Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Missing Update

This page lists 22224 vulnerabilities in this category.

Critical: 1394 High: 12186 Medium: 7891 Low: 749 Information: 4
Vulnerability Name
CVE
CWE
Severity
osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-22724)
CVE-2024-22724
CWE-94
Medium
Seo Panel Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-22648)
CVE-2024-22648
CWE-918
Medium
Seo Panel Observable Discrepancy Vulnerability (CVE-2024-22647)
CVE-2024-22647
CWE-203
Medium
Seo Panel Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-22646)
CVE-2024-22646
CWE-209
Medium
Seo Panel Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-22643)
CVE-2024-22643
CWE-352
Medium
WebERP Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-22474)
CVE-2020-22474
CWE-732
Medium
phpMyFAQ Incorrect Authorization Vulnerability (CVE-2024-22208)
CVE-2024-22208
CWE-863
Medium
phpMyFAQ Improper Access Control Vulnerability (CVE-2024-22202)
CVE-2024-22202
CWE-284
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22608)
CVE-2020-22608
CWE-707
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21911)
CVE-2024-21911
CWE-707
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21908)
CVE-2024-21908
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23174)
CVE-2024-23174
CWE-707
Medium
Joomla Insufficient Session Expiration Vulnerability (CVE-2024-21722)
CVE-2024-21722
CWE-613
Medium
TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23066)
CVE-2020-23066
CWE-707
Medium
jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23064)
CVE-2020-23064
CWE-707
Medium
b2evolution Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22841)
CVE-2020-22841
CWE-707
Medium
b2evolution URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-22840)
CVE-2020-22840
CWE-601
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22609)
CVE-2020-22609
CWE-707
Medium
Atlassian Confluence Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2024-21703)
CVE-2024-21703
CWE-732
Medium
Joomla URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-21723)
CVE-2024-21723
CWE-601
Medium
Apache Tomcat Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2024-21733)
CVE-2024-21733
CWE-209
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21724)
CVE-2024-21724
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21725)
CVE-2024-21725
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21726)
CVE-2024-21726
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21729)
CVE-2024-21729
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21730)
CVE-2024-21730
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21731)
CVE-2024-21731
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23173)
CVE-2024-23173
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23177)
CVE-2024-23177
CWE-707
Medium
Chamilo Improper Privilege Management Vulnerability (CVE-2020-23128)
CVE-2020-23128
CWE-269
Medium
MySQL NULL Pointer Dereference Vulnerability (CVE-2020-1971)
CVE-2020-1971
CWE-476
Medium
Apache Tomcat Incomplete Cleanup Vulnerability (CVE-2024-23672)
CVE-2024-23672
CWE-459
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23817)
CVE-2024-23817
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23818)
CVE-2024-23818
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23819)
CVE-2024-23819
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23821)
CVE-2024-23821
CWE-707
Medium
Frontaccounting Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-21244)
CVE-2020-21244
CWE-22
Medium
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2020-1971)
CVE-2020-1971
CWE-476
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23642)
CVE-2024-23642
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24574)
CVE-2024-24574
CWE-707
Medium
OpenSSL Possible denial of service attack Vulnerability (CVE-2020-1971)
CVE-2020-1971
-
Medium
YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-4107)
CVE-2021-4107
CWE-707
Medium
Apache HTTP Server Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') Vulnerability (CVE-2024-24795)
CVE-2024-24795
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24815)
CVE-2024-24815
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-24816)
CVE-2024-24816
CWE-707
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23643)
CVE-2024-23643
CWE-707
Medium
YetiForce CRM Improper Input Validation Vulnerability (CVE-2021-4111)
CVE-2021-4111
CWE-20
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23178)
CVE-2024-23178
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-21732)
CVE-2020-21732
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23179)
CVE-2024-23179
CWE-707
Medium
phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22251)
CVE-2020-22251
CWE-707
Medium
Envoy Proxy Uncontrolled Resource Consumption Vulnerability (CVE-2024-23323)
CVE-2024-23323
CWE-400
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22150)
CVE-2020-22150
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22148)
CVE-2020-22148
CWE-707
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-21967)
CVE-2020-21967
CWE-707
Medium
MyBB CVE-2024-23335 Vulnerability (CVE-2024-23335)
CVE-2024-23335
-
Medium
GeoServer Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-23640)
CVE-2024-23640
CWE-707
Medium
MyBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-23336)
CVE-2024-23336
CWE-918
Medium
YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-4121)
CVE-2021-4121
CWE-707
Medium
GeoServer Other Vulnerability (CVE-2024-23634)
CVE-2024-23634
-
Medium
YetiForce CRM Improper Input Validation Vulnerability (CVE-2021-4117)
CVE-2021-4117
CWE-20
Medium
YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-4116)
CVE-2021-4116
CWE-707
Medium
Squid Operation on a Resource after Expiration or Release Vulnerability (CVE-2024-23638)
CVE-2024-23638
CWE-672
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23126)
CVE-2020-23126
CWE-707
Medium
XWiki Uncontrolled Resource Consumption Vulnerability (CVE-2024-21651)
CVE-2024-21651
CWE-400
Medium
TYPO3 CVE-2024-25118 Vulnerability (CVE-2024-25118)
CVE-2024-25118
-
Medium
MySQL CVE-2024-21199 Vulnerability (CVE-2024-21199)
CVE-2024-21199
-
Medium
MySQL CVE-2024-21218 Vulnerability (CVE-2024-21218)
CVE-2024-21218
-
Medium
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-0334)
CVE-2022-0334
CWE-668
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-23341)
CVE-2020-23341
CWE-707
Medium
MySQL CVE-2024-21213 Vulnerability (CVE-2024-21213)
CVE-2024-21213
-
Medium
MySQL CVE-2024-21212 Vulnerability (CVE-2024-21212)
CVE-2024-21212
-
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27902)
CVE-2021-27902
CWE-707
Medium
Dolibarr Other Vulnerability (CVE-2022-0414)
CVE-2022-0414
-
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27889)
CVE-2021-27889
CWE-707
Medium