Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20447)
CVE-2021-20447
CWE-707
Medium
jQuery UI Dialog Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31160)
CVE-2022-31160
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31049)
CVE-2022-31049
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-21358)
CVE-2021-21358
CWE-707
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31097)
CVE-2022-31097
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-21340)
CVE-2021-21340
CWE-707
Medium
TYPO3 URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-21338)
CVE-2021-21338
CWE-601
Medium
jQuery UI Autocomplete Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31160)
CVE-2022-31160
CWE-707
Medium
jQuery UI Tooltip Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31160)
CVE-2022-31160
CWE-707
Medium
PHP CVE-2022-31629 Vulnerability (CVE-2022-31629)
CVE-2022-31629
-
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-21336)
CVE-2021-21336
CWE-200
Medium
XWiki Missing Authorization Vulnerability (CVE-2022-31167)
CVE-2022-31167
CWE-862
Medium
Nginx Use After Free Vulnerability (CVE-2022-31307)
CVE-2022-31307
CWE-416
Medium
Magento Insufficient Session Expiration Vulnerability (CVE-2021-21032)
CVE-2021-21032
CWE-613
Medium
Magento Insufficient Session Expiration Vulnerability (CVE-2021-21031)
CVE-2021-21031
CWE-613
Medium
PHP Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2022-31628)
CVE-2022-31628
CWE-835
Medium
MySQL CVE-2022-21632 Vulnerability (CVE-2022-21632)
CVE-2022-21632
-
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-34170)
CVE-2022-34170
CWE-707
Medium
TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2022-31047)
CVE-2022-31047
CWE-532
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-20281)
CVE-2021-20281
CWE-200
Medium
Moodle URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-35652)
CVE-2022-35652
CWE-601
Medium
Oracle JRE CVE-2022-21628 Vulnerability (CVE-2022-21628)
CVE-2022-21628
-
Medium
Oracle JRE CVE-2022-21626 Vulnerability (CVE-2022-21626)
CVE-2022-21626
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35653)
CVE-2022-35653
CWE-707
Medium
Moodle Incorrect Authorization Vulnerability (CVE-2021-20282)
CVE-2021-20282
CWE-863
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35740)
CVE-2022-35740
CWE-707
Medium
Grafana Authentication Bypass by Spoofing Vulnerability (CVE-2022-35957)
CVE-2022-35957
CWE-290
Medium
Moodle Incorrect Authorization Vulnerability (CVE-2021-20283)
CVE-2021-20283
CWE-863
Medium
Next.js Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2022-36046)
CVE-2022-36046
CWE-754
Medium
MySQL CVE-2022-21625 Vulnerability (CVE-2022-21625)
CVE-2022-21625
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20280)
CVE-2021-20280
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20279)
CVE-2021-20279
CWE-707
Medium
PostgreSQL Incorrect Authorization Vulnerability (CVE-2021-20229)
CVE-2021-20229
CWE-863
Medium
Sqlite Use After Free Vulnerability (CVE-2021-20227)
CVE-2021-20227
CWE-416
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35651)
CVE-2022-35651
CWE-707
Medium
Jboss EAP Session Fixation Vulnerability (CVE-2021-20324)
CVE-2021-20324
CWE-384
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-34171)
CVE-2022-34171
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-34258)
CVE-2022-34258
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20357)
CVE-2021-20357
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20352)
CVE-2021-20352
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20351)
CVE-2021-20351
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20350)
CVE-2021-20350
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20340)
CVE-2021-20340
CWE-707
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-34257)
CVE-2022-34257
CWE-707
Medium
Magento CVE-2022-34259 Vulnerability (CVE-2022-34259)
CVE-2022-34259
-
Medium
osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35212)
CVE-2022-35212
CWE-707
Medium
MongoDb Improper Encoding or Escaping of Output Vulnerability (CVE-2021-20333)
CVE-2021-20333
CWE-116
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2021-20330)
CVE-2021-20330
CWE-20
Medium
Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-34305)
CVE-2022-34305
CWE-707
Medium
MongoDb Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-20326)
CVE-2021-20326
CWE-732
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-34911)
CVE-2022-34911
CWE-707
Medium
MediaWiki CVE-2022-34912 Vulnerability (CVE-2022-34912)
CVE-2022-34912
-
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-31048)
CVE-2022-31048
CWE-707
Medium
TYPO3 Cleartext Transmission of Sensitive Information Vulnerability (CVE-2022-31046)
CVE-2022-31046
CWE-319
Medium
PHP Other Vulnerability (CVE-2021-21707)
CVE-2021-21707
-
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29252)
CVE-2022-29252
CWE-707
Medium
Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2022-29224)
CVE-2022-29224
CWE-476
Medium
Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-21683)
CVE-2021-21683
CWE-22
Medium
Jenkins CVE-2021-21682 Vulnerability (CVE-2021-21682)
CVE-2021-21682
-
Medium
Jenkins Incorrect Authorization Vulnerability (CVE-2021-21670)
CVE-2021-21670
CWE-863
Medium
Jenkins Improper Handling of Inconsistent Structural Elements Vulnerability (CVE-2021-21640)
CVE-2021-21640
CWE-240
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29251)
CVE-2022-29251
CWE-707
Medium
XWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-29253)
CVE-2022-29253
CWE-22
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28982)
CVE-2022-28982
CWE-707
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29258)
CVE-2022-29258
CWE-707
Medium
Jenkins Improper Input Validation Vulnerability (CVE-2021-21639)
CVE-2021-21639
CWE-20
Medium
Apache Denial of service in mod_lua r:parsebody Vulnerability (CVE-2022-29404)
CVE-2022-29404
-
Medium
WebLogic Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29577)
CVE-2022-29577
CWE-707
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-29710)
CVE-2022-29710
CWE-707
Medium
Caddy Web Server URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-29718)
CVE-2022-29718
CWE-601
Medium
SharePoint CVE-2022-29108 Vulnerability (CVE-2022-29108)
CVE-2022-29108
-
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28982)
CVE-2022-28982
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-29903)
CVE-2022-29903
CWE-352
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-28803)
CVE-2022-28803
CWE-707
Medium
PHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-21706)
CVE-2021-21706
CWE-22
Medium
«
1
...
247
248
249
...
297
»
