Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
Moodle Incorrect Authorization Vulnerability (CVE-2024-48897)
CVE-2024-48897
CWE-863
Medium
Moodle Missing Authorization Vulnerability (CVE-2024-48898)
CVE-2024-48898
CWE-862
Medium
Moodle Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-48899)
CVE-2024-48899
CWE-639
Medium
Moodle CVE-2024-48900 Vulnerability (CVE-2024-48900)
CVE-2024-48900
-
Medium
Moodle Incorrect Authorization Vulnerability (CVE-2024-48901)
CVE-2024-48901
CWE-863
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43704)
CVE-2023-43704
CWE-707
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43702)
CVE-2023-43702
CWE-707
Medium
Sqlite NULL Pointer Dereference Vulnerability (CVE-2020-13632)
CVE-2020-13632
CWE-476
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9281)
CVE-2020-9281
CWE-707
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2022-41766)
CVE-2022-41766
CWE-732
Medium
MediaWiki Observable Discrepancy Vulnerability (CVE-2022-41765)
CVE-2022-41765
CWE-203
Medium
Python Uncontrolled Resource Consumption Vulnerability (CVE-2020-8492)
CVE-2020-8492
CWE-400
Medium
Envoy Proxy Insufficient Verification of Data Authenticity Vulnerability (CVE-2020-8660)
CVE-2020-8660
CWE-345
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-41414)
CVE-2022-41414
CWE-276
Medium
Vanilla Forums Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8825)
CVE-2020-8825
CWE-707
Medium
Squid Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-41317)
CVE-2022-41317
CWE-668
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-41224)
CVE-2022-41224
CWE-707
Medium
SharePoint CVE-2022-41122 Vulnerability (CVE-2022-41122)
CVE-2022-41122
-
Medium
SharePoint CVE-2022-41103 Vulnerability (CVE-2022-41103)
CVE-2022-41103
-
Medium
WebLogic CVE-2022-21564 Vulnerability (CVE-2022-21564)
CVE-2022-21564
-
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9016)
CVE-2020-9016
CWE-707
Medium
SharePoint CVE-2022-41060 Vulnerability (CVE-2022-41060)
CVE-2022-41060
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9281)
CVE-2020-9281
CWE-707
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9311)
CVE-2020-9311
CWE-707
Medium
WebLogic CVE-2022-21560 Vulnerability (CVE-2022-21560)
CVE-2022-21560
-
Medium
WordPress Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2022-3590)
CVE-2022-3590
CWE-367
Medium
YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-3002)
CVE-2022-3002
CWE-707
Medium
YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-3004)
CVE-2022-3004
CWE-707
Medium
YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-3005)
CVE-2022-3005
CWE-707
Medium
WordPress Ultimate Member Plugin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-3361)
CVE-2022-3361
CWE-22
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9584)
CVE-2020-9584
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9581)
CVE-2020-9581
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9577)
CVE-2020-9577
CWE-707
Medium
Apache Traffic Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-40743)
CVE-2022-40743
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-3765)
CVE-2022-3765
CWE-707
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-3766)
CVE-2022-3766
CWE-707
Medium
Moodle Other Vulnerability (CVE-2022-40208)
CVE-2022-40208
-
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9467)
CVE-2020-9467
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9440)
CVE-2020-9440
CWE-707
Medium
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-40316)
CVE-2022-40316
CWE-668
Medium
MediaWiki CVE-2022-41767 Vulnerability (CVE-2022-41767)
CVE-2022-41767
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8421)
CVE-2020-8421
CWE-707
Medium
Liferay Portal Missing Authorization Vulnerability (CVE-2022-39975)
CVE-2022-39975
CWE-862
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42118)
CVE-2022-42118
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42115)
CVE-2022-42115
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42116)
CVE-2022-42116
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42116)
CVE-2022-42116
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42117)
CVE-2022-42117
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42117)
CVE-2022-42117
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42118)
CVE-2022-42118
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42119)
CVE-2022-42119
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42114)
CVE-2022-42114
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42119)
CVE-2022-42119
CWE-707
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8167)
CVE-2020-8167
CWE-352
Medium
WebLogic CVE-2022-21548 Vulnerability (CVE-2022-21548)
CVE-2022-21548
-
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8166)
CVE-2020-8166
CWE-352
Medium
ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-8143)
CVE-2020-8143
CWE-601
Medium
ReviveAdserver Incorrect Authorization Vulnerability (CVE-2020-8142)
CVE-2020-8142
CWE-863
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42114)
CVE-2022-42114
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42113)
CVE-2022-42113
CWE-707
Medium
XWiki Missing Authorization Vulnerability (CVE-2022-41929)
CVE-2022-41929
CWE-862
Medium
phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-8226)
CVE-2020-8226
CWE-918
Medium
Python Improper Input Validation Vulnerability (CVE-2020-8315)
CVE-2020-8315
CWE-20
Medium
WebLogic CVE-2022-21557 Vulnerability (CVE-2022-21557)
CVE-2022-21557
-
Medium
XWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-41932)
CVE-2022-41932
CWE-770
Medium
XWiki Insufficiently Protected Credentials Vulnerability (CVE-2022-41933)
CVE-2022-41933
CWE-522
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8264)
CVE-2020-8264
CWE-707
Medium
XWiki Other Vulnerability (CVE-2022-41935)
CVE-2022-41935
-
Medium
Ruby on Rails Uncontrolled Resource Consumption Vulnerability (CVE-2020-8185)
CVE-2020-8185
CWE-400
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42112)
CVE-2022-42112
CWE-707
Medium
Oracle JRE CVE-2022-21549 Vulnerability (CVE-2022-21549)
CVE-2022-21549
-
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42110)
CVE-2022-42110
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42110)
CVE-2022-42110
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42111)
CVE-2022-42111
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42111)
CVE-2022-42111
CWE-707
Medium
«
1
...
241
242
243
...
297
»
