Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Missing Update

This page lists 22224 vulnerabilities in this category.

Critical: 1394 High: 12186 Medium: 7891 Low: 749 Information: 4
Vulnerability Name
CVE
CWE
Severity
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43707)
CVE-2022-43707
CWE-707
Medium
ownCloud CVE-2022-43679 Vulnerability (CVE-2022-43679)
CVE-2022-43679
-
Medium
WordPress Improper Authentication Vulnerability (CVE-2022-43504)
CVE-2022-43504
CWE-287
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43500)
CVE-2022-43500
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43497)
CVE-2022-43497
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43185)
CVE-2022-43185
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43170)
CVE-2022-43170
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43169)
CVE-2022-43169
CWE-707
Medium
Prototype Improper Privilege Management Vulnerability (CVE-2020-7993)
CVE-2020-7993
CWE-269
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43167)
CVE-2022-43167
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43166)
CVE-2022-43166
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-43164)
CVE-2022-43164
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44944)
CVE-2022-44944
CWE-707
Medium
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2022-42130)
CVE-2022-42130
CWE-276
Medium
Liferay Portal CVE-2022-42126 Vulnerability (CVE-2022-42126)
CVE-2022-42126
-
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42127)
CVE-2022-42127
CWE-276
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42128)
CVE-2022-42128
CWE-276
Medium
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2022-42128)
CVE-2022-42128
CWE-276
Medium
Liferay DXP Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129)
CVE-2022-42129
CWE-639
Medium
Liferay Portal Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129)
CVE-2022-42129
CWE-639
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42130)
CVE-2022-42130
CWE-276
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7994)
CVE-2020-7994
CWE-707
Medium
Liferay Portal Improper Certificate Validation Vulnerability (CVE-2022-42131)
CVE-2022-42131
CWE-295
Medium
Liferay DXP Improper Certificate Validation Vulnerability (CVE-2022-42131)
CVE-2022-42131
CWE-295
Medium
Liferay Portal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-42132)
CVE-2022-42132
CWE-200
Medium
Liferay DXP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-42132)
CVE-2022-42132
CWE-200
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-8089)
CVE-2020-8089
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7996)
CVE-2020-7996
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7937)
CVE-2020-7937
CWE-707
Medium
Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-7936)
CVE-2020-7936
CWE-601
Medium
PHP Reliance on Cookies without Validation and Integrity Checking Vulnerability (CVE-2020-7070)
CVE-2020-7070
CWE-565
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-48007)
CVE-2022-48007
CWE-707
Medium
MongoDb Improper Handling of Exceptional Conditions Vulnerability (CVE-2020-7923)
CVE-2020-7923
CWE-755
Medium
MySQL CVE-2022-21489 Vulnerability (CVE-2022-21489)
CVE-2022-21489
-
Medium
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-46158)
CVE-2022-46158
CWE-200
Medium
MongoDb Incorrect Authorization Vulnerability (CVE-2020-7921)
CVE-2020-7921
CWE-863
Medium
UAParser.js Other Vulnerability (CVE-2020-7793)
CVE-2020-7793
-
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2022-47927)
CVE-2022-47927
CWE-732
Medium
UAParser.js Uncontrolled Resource Consumption Vulnerability (CVE-2020-7733)
CVE-2020-7733
CWE-400
Medium
Liferay Portal CVE-2022-45320 Vulnerability (CVE-2022-45320)
CVE-2022-45320
-
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-48010)
CVE-2022-48010
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-48110)
CVE-2022-48110
CWE-707
Medium
AngularJS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7676)
CVE-2020-7676
CWE-707
Medium
jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7656)
CVE-2020-7656
CWE-707
Medium
Python Uncontrolled Resource Consumption Vulnerability (CVE-2022-48564)
CVE-2022-48564
CWE-400
Medium
PHP Improper Input Validation Vulnerability (CVE-2020-7071)
CVE-2020-7071
CWE-20
Medium
Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-45783)
CVE-2022-45783
CWE-22
Medium
Liferay DXP CVE-2022-45320 Vulnerability (CVE-2022-45320)
CVE-2022-45320
-
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44946)
CVE-2022-44946
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-7934)
CVE-2020-7934
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44947)
CVE-2022-44947
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44948)
CVE-2022-44948
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44949)
CVE-2022-44949
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44950)
CVE-2022-44950
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44951)
CVE-2022-44951
CWE-707
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-44952)
CVE-2022-44952
CWE-707
Medium
MongoDb Other Vulnerability (CVE-2020-7929)
CVE-2020-7929
-
Medium
MongoDb Improper Handling of Exceptional Conditions Vulnerability (CVE-2020-7926)
CVE-2020-7926
CWE-755
Medium
MongoDb Other Vulnerability (CVE-2020-7928)
CVE-2020-7928
-
Medium
Oracle JRE CVE-2022-21541 Vulnerability (CVE-2022-21541)
CVE-2022-21541
-
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-45149)
CVE-2022-45149
CWE-352
Medium
Oracle JRE CVE-2022-21540 Vulnerability (CVE-2022-21540)
CVE-2022-21540
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-45150)
CVE-2022-45150
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-45151)
CVE-2022-45151
CWE-707
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-36097)
CVE-2022-36097
CWE-707
Medium
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-36095)
CVE-2022-36095
CWE-352
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1882)
CVE-2023-1882
CWE-707
Medium
Liferay Portal Origin Validation Error Vulnerability (CVE-2022-25146)
CVE-2022-25146
CWE-346
Medium
ownCloud Other Vulnerability (CVE-2022-25338)
CVE-2022-25338
-
Medium
Python Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-23336)
CVE-2021-23336
CWE-444
Medium
Django Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-23336)
CVE-2021-23336
CWE-444
Medium
Oracle HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2022-25313)
CVE-2022-25313
CWE-400
Medium
Drupal CVE-2022-25278 Vulnerability (CVE-2022-25278)
CVE-2022-25278
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-25276)
CVE-2022-25276
CWE-707
Medium
MySQL CVE-2022-21637 Vulnerability (CVE-2022-21637)
CVE-2022-21637
-
Medium