🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Missing Update
This page lists
23101 vulnerabilities
in this category.
Critical: 1474
High: 12458
Medium: 8395
Low: 770
Information: 4
Vulnerability Name
CVE
CWE
Severity
Plone CMS Improper Authentication Vulnerability (CVE-2009-0662)
CVE-2009-0662
CWE-287
Medium
Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0781)
CVE-2009-0781
CWE-707
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0783)
CVE-2009-0783
CWE-200
Medium
OpenSSL Numeric Errors Vulnerability (CVE-2009-0789)
CVE-2009-0789
-
Medium
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-0815)
CVE-2009-0815
CWE-200
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0816)
CVE-2009-0816
CWE-707
Medium
MySQL Other Vulnerability (CVE-2009-0819)
CVE-2009-0819
-
Medium
PostgreSQL Resource Management Errors Vulnerability (CVE-2009-0922)
CVE-2009-0922
-
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-0933)
CVE-2009-0933
CWE-707
Medium
Oracle Database Server CVE-2009-0972 Vulnerability (CVE-2009-0972)
CVE-2009-0972
-
Medium
Oracle Application Server CVE-2008-7234 Vulnerability (CVE-2008-7234)
CVE-2008-7234
-
Medium
Coppermine Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7187)
CVE-2008-7187
CWE-200
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5644)
CVE-2008-5644
CWE-707
Medium
Sqlite Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6589)
CVE-2008-6589
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5656)
CVE-2008-5656
CWE-707
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5687)
CVE-2008-5687
CWE-264
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5688)
CVE-2008-5688
CWE-200
Medium
Python Untrusted Search Path Vulnerability (CVE-2008-5983)
CVE-2008-5983
CWE-426
Medium
Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6065)
CVE-2008-6065
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6125)
CVE-2008-6125
CWE-264
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6208)
CVE-2008-6208
CWE-707
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6503)
CVE-2008-6503
CWE-707
Medium
phpBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6506)
CVE-2008-6506
CWE-264
Medium
phpBB CVE-2008-6507 Vulnerability (CVE-2008-6507)
CVE-2008-6507
-
Medium
Atlassian Jira Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-6531)
CVE-2008-6531
CWE-94
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-6532)
CVE-2008-6532
CWE-352
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6533)
CVE-2008-6533
CWE-707
Medium
Sqlite Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6590)
CVE-2008-6590
CWE-22
Medium
Coppermine Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7186)
CVE-2008-7186
CWE-264
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6699)
CVE-2008-6699
CWE-707
Medium
WordPress Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-6762)
CVE-2008-6762
CWE-59
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6831)
CVE-2008-6831
CWE-707
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-6832)
CVE-2008-6832
CWE-352
Medium
PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6850)
CVE-2008-6850
CWE-707
Medium
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6884)
CVE-2008-6884
CWE-22
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6885)
CVE-2008-6885
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6925)
CVE-2008-6925
CWE-707
Medium
ZenCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6985)
CVE-2008-6985
CWE-138
Medium
ZenCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6986)
CVE-2008-6986
CWE-138
Medium
PHP Improper Input Validation Vulnerability (CVE-2008-7068)
CVE-2008-7068
CWE-20
Medium
WeBid Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7117)
CVE-2008-7117
CWE-264
Medium
WeBid Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7118)
CVE-2008-7118
CWE-264
Medium
phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7143)
CVE-2008-7143
CWE-200
Medium
Claroline Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3262)
CVE-2008-3262
CWE-352
Medium
Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3260)
CVE-2008-3260
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5597)
CVE-2007-5597
CWE-264
Medium
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0615)
CVE-2008-0615
CWE-22
Medium
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-0195)
CVE-2008-0195
CWE-200
Medium
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0196)
CVE-2008-0196
CWE-22
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0198)
CVE-2008-0198
CWE-352
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0272)
CVE-2008-0272
CWE-352
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0273)
CVE-2008-0273
CWE-707
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0276)
CVE-2008-0276
CWE-707
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0455)
CVE-2008-0455
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0455)
CVE-2008-0455
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0460)
CVE-2008-0460
CWE-707
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0462)
CVE-2008-0462
CWE-707
Medium
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0471)
CVE-2008-0471
CWE-352
Medium
Coppermine Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0504)
CVE-2008-0504
CWE-138
Medium
XOOPS Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-0613)
CVE-2008-0613
CWE-59
Medium
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0616)
CVE-2008-0616
CWE-138
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0192)
CVE-2008-0192
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0617)
CVE-2008-0617
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0618)
CVE-2008-0618
CWE-707
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-0664)
CVE-2008-0664
CWE-264
Medium
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0788)
CVE-2008-0788
CWE-352
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0828)
CVE-2008-0828
CWE-707
Medium
OpenSSL Numeric Errors Vulnerability (CVE-2008-0891)
CVE-2008-0891
-
Medium
Lighttpd Resource Management Errors Vulnerability (CVE-2008-0983)
CVE-2008-0983
-
Medium
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1111)
CVE-2008-1111
CWE-200
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1133)
CVE-2008-1133
CWE-707
Medium
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-1149)
CVE-2008-1149
CWE-352
Medium
Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1232)
CVE-2008-1232
CWE-707
Medium
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1270)
CVE-2008-1270
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1304)
CVE-2008-1304
CWE-707
Medium
«
1
...
222
223
224
...
309
»
