Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Missing Update

This page lists 23101 vulnerabilities in this category.

Critical: 1474 High: 12458 Medium: 8395 Low: 770 Information: 4
Vulnerability Name
CVE
CWE
Severity
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4790)
CVE-2008-4790
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4791)
CVE-2008-4791
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4792)
CVE-2008-4792
CWE-264
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4928)
CVE-2008-4928
CWE-707
Medium
MyBB Improper Input Validation Vulnerability (CVE-2008-4930)
CVE-2008-4930
CWE-20
Medium
WordPress Improper Input Validation Vulnerability (CVE-2008-4106)
CVE-2008-4106
CWE-20
Medium
OpenSSL Improper Input Validation Vulnerability (CVE-2008-5077)
CVE-2008-5077
CWE-20
Medium
Zope Web Application Server Resource Management Errors Vulnerability (CVE-2008-5102)
CVE-2008-5102
-
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5113)
CVE-2008-5113
CWE-352
Medium
Moodle Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-5153)
CVE-2008-5153
CWE-59
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5189)
CVE-2008-5189
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5249)
CVE-2008-5249
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5252)
CVE-2008-5252
CWE-352
Medium
GlassFish Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5266)
CVE-2008-5266
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5278)
CVE-2008-5278
CWE-707
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5320)
CVE-2008-5320
CWE-138
Medium
PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5335)
CVE-2008-5335
CWE-138
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5432)
CVE-2008-5432
CWE-707
Medium
Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)
CVE-2008-5438
-
Medium
PHP Numeric Errors Vulnerability (CVE-2008-4107)
CVE-2008-4107
-
Medium
Joomla Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4104)
CVE-2008-4104
CWE-59
Medium
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-5515)
CVE-2008-5515
CWE-22
Medium
Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-3708)
CVE-2008-3708
CWE-22
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3271)
CVE-2008-3271
CWE-264
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3295)
CVE-2008-3295
CWE-707
Medium
Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3315)
CVE-2008-3315
CWE-707
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3325)
CVE-2008-3325
CWE-352
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-3327)
CVE-2008-3327
CWE-200
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3334)
CVE-2008-3334
CWE-707
Medium
ATutor Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-3368)
CVE-2008-3368
CWE-94
Medium
Ruby Resource Management Errors Vulnerability (CVE-2008-3443)
CVE-2008-3443
-
Medium
phpMyAdmin Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3456)
CVE-2008-3456
CWE-59
Medium
Jboss EAP Configuration Vulnerability (CVE-2008-3519)
CVE-2008-3519
-
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-3659)
CVE-2008-3659
CWE-119
Medium
PHP Improper Input Validation Vulnerability (CVE-2008-3660)
CVE-2008-3660
CWE-20
Medium
Drupal Other Vulnerability (CVE-2008-3661)
CVE-2008-3661
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3740)
CVE-2008-3740
CWE-707
Medium
Joomla Improper Input Validation Vulnerability (CVE-2008-4103)
CVE-2008-4103
CWE-20
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3742)
CVE-2008-3742
CWE-264
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3743)
CVE-2008-3743
CWE-352
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3744)
CVE-2008-3744
CWE-352
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3745)
CVE-2008-3745
CWE-264
Medium
Ruby Improper Input Validation Vulnerability (CVE-2008-3790)
CVE-2008-3790
CWE-20
Medium
Ruby Improper Authentication Vulnerability (CVE-2008-3905)
CVE-2008-3905
CWE-287
Medium
MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963)
CVE-2008-3963
CWE-134
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3966)
CVE-2008-3966
CWE-707
Medium
Oracle Application Server CVE-2008-3975 Vulnerability (CVE-2008-3975)
CVE-2008-3975
-
Medium
Oracle Application Server CVE-2008-3977 Vulnerability (CVE-2008-3977)
CVE-2008-3977
-
Medium
Oracle Application Server CVE-2008-4014 Vulnerability (CVE-2008-4014)
CVE-2008-4014
-
Medium
Oracle Application Server CVE-2008-4017 Vulnerability (CVE-2008-4017)
CVE-2008-4017
-
Medium
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4097)
CVE-2008-4097
CWE-264
Medium
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4098)
CVE-2008-4098
CWE-59
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5498)
CVE-2008-5498
CWE-200
Medium
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5621)
CVE-2008-5621
CWE-352
Medium
Claroline Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3261)
CVE-2008-3261
CWE-59
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0500)
CVE-2009-0500
CWE-707
Medium
Oracle Application Server CVE-2008-7235 Vulnerability (CVE-2008-7235)
CVE-2008-7235
-
Medium
Oracle Application Server CVE-2008-7236 Vulnerability (CVE-2008-7236)
CVE-2008-7236
-
Medium
Oracle Application Server CVE-2008-7237 Vulnerability (CVE-2008-7237)
CVE-2008-7237
-
Medium
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-7247)
CVE-2008-7247
CWE-59
Medium
Ruby on Rails Improper Input Validation Vulnerability (CVE-2008-7248)
CVE-2008-7248
CWE-20
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2008-7270)
CVE-2008-7270
-
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-0023)
CVE-2009-0023
CWE-119
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2009-0033)
CVE-2009-0033
CWE-20
Medium
Oracle Application Server Other Vulnerability (CVE-2009-0217)
CVE-2009-0217
-
Medium
TYPO3 Cryptographic Issues Vulnerability (CVE-2009-0255)
CVE-2009-0255
-
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0257)
CVE-2009-0257
CWE-707
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0413)
CVE-2009-0413
CWE-707
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-0499)
CVE-2009-0499
CWE-352
Medium
Moodle CVE-2009-0501 Vulnerability (CVE-2009-0501)
CVE-2009-0501
-
Medium
GeoServer Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-7227)
CVE-2008-7227
CWE-119
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0502)
CVE-2009-0502
CWE-707
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0580)
CVE-2009-0580
CWE-200
Medium
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-0590)
CVE-2009-0590
CWE-119
Medium
Ruby Improper Authentication Vulnerability (CVE-2009-0642)
CVE-2009-0642
CWE-287
Medium