🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Missing Update
This page lists
23101 vulnerabilities
in this category.
Critical: 1474
High: 12458
Medium: 8395
Low: 770
Information: 4
Vulnerability Name
CVE
CWE
Severity
TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2021-32767)
CVE-2021-32767
CWE-532
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32768)
CVE-2021-32768
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32808)
CVE-2021-32808
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32809)
CVE-2021-32809
CWE-707
Medium
Chamilo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32925)
CVE-2021-32925
CWE-200
Medium
Apache Tomcat Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-33037)
CVE-2021-33037
CWE-444
Medium
Liferay Portal Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-33320)
CVE-2021-33320
CWE-770
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33324)
CVE-2021-33324
CWE-276
Medium
Liferay Portal Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33325)
CVE-2021-33325
CWE-312
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33326)
CVE-2021-33326
CWE-707
Medium
MySQL CVE-2021-2208 Vulnerability (CVE-2021-2208)
CVE-2021-2208
-
Medium
MySQL CVE-2021-2203 Vulnerability (CVE-2021-2203)
CVE-2021-2203
-
Medium
Oracle JRE CVE-2021-35567 Vulnerability (CVE-2021-35567)
CVE-2021-35567
-
Medium
silverstripeCMS Incorrect Authorization Vulnerability (CVE-2021-28661)
CVE-2021-28661
CWE-863
Medium
Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28417)
CVE-2021-28417
CWE-707
Medium
Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28418)
CVE-2021-28418
CWE-707
Medium
Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28420)
CVE-2021-28420
CWE-707
Medium
SharePoint CVE-2021-28450 Vulnerability (CVE-2021-28450)
CVE-2021-28450
-
Medium
SharePoint CVE-2021-28453 Vulnerability (CVE-2021-28453)
CVE-2021-28453
-
Medium
SharePoint Interpretation Conflict Vulnerability (CVE-2021-28474)
CVE-2021-28474
CWE-436
Medium
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28556)
CVE-2021-28556
CWE-707
Medium
Magento Improper Authorization Vulnerability (CVE-2021-28563)
CVE-2021-28563
CWE-285
Medium
Magento Incorrect Authorization Vulnerability (CVE-2021-28567)
CVE-2021-28567
CWE-863
Medium
Magento Violation of Secure Design Principles Vulnerability (CVE-2021-28583)
CVE-2021-28583
CWE-657
Medium
Magento Improper Input Validation Vulnerability (CVE-2021-28585)
CVE-2021-28585
CWE-20
Medium
Squid Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2021-28652)
CVE-2021-28652
CWE-401
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-28658)
CVE-2021-28658
CWE-22
Medium
Squid Improper Encoding or Escaping of Output Vulnerability (CVE-2021-28662)
CVE-2021-28662
CWE-116
Medium
WebLogic Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression La Vulnerability (CVE-2021-28170)
CVE-2021-28170
CWE-138
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29002)
CVE-2021-29002
CWE-707
Medium
Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29008)
CVE-2021-29008
CWE-707
Medium
Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29009)
CVE-2021-29009
CWE-707
Medium
Seo Panel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29010)
CVE-2021-29010
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29039)
CVE-2021-29039
CWE-707
Medium
Liferay Portal Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2021-29040)
CVE-2021-29040
CWE-209
Medium
Liferay DXP CVE-2021-29041 Vulnerability (CVE-2021-29041)
CVE-2021-29041
-
Medium
Liferay Portal Insufficiently Protected Credentials Vulnerability (CVE-2021-29043)
CVE-2021-29043
CWE-522
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29044)
CVE-2021-29044
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29045)
CVE-2021-29045
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29046)
CVE-2021-29046
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29048)
CVE-2021-29048
CWE-707
Medium
Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29049)
CVE-2021-29049
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29051)
CVE-2021-29051
CWE-707
Medium
Python Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-28359)
CVE-2021-28359
CWE-707
Medium
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-28169)
CVE-2021-28169
CWE-200
Medium
Nexus Repository Manager Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29159)
CVE-2021-29159
CWE-707
Medium
CKEditor Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-26272)
CVE-2021-26272
CWE-829
Medium
Joomla Insufficient Session Expiration Vulnerability (CVE-2021-26037)
CVE-2021-26037
CWE-613
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26039)
CVE-2021-26039
CWE-707
Medium
Atlassian Jira Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-26069)
CVE-2021-26069
CWE-138
Medium
Atlassian Confluence Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-26072)
CVE-2021-26072
CWE-918
Medium
Atlassian Jira CVE-2021-26075 Vulnerability (CVE-2021-26075)
CVE-2021-26075
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26078)
CVE-2021-26078
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26079)
CVE-2021-26079
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26080)
CVE-2021-26080
CWE-707
Medium
Atlassian Jira CVE-2021-26081 Vulnerability (CVE-2021-26081)
CVE-2021-26081
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26082)
CVE-2021-26082
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26083)
CVE-2021-26083
CWE-707
Medium
Atlassian Confluence Missing Authorization Vulnerability (CVE-2021-26085)
CVE-2021-26085
CWE-862
Medium
Atlassian Jira Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-26086)
CVE-2021-26086
CWE-22
Medium
CKEditor Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2021-26271)
CVE-2021-26271
CWE-829
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26746)
CVE-2021-26746
CWE-707
Medium
Grafana Other Vulnerability (CVE-2021-28147)
CVE-2021-28147
-
Medium
Omeka Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26799)
CVE-2021-26799
CWE-707
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26925)
CVE-2021-26925
CWE-707
Medium
SharePoint CVE-2021-27052 Vulnerability (CVE-2021-27052)
CVE-2021-27052
-
Medium
SharePoint CVE-2021-27076 Vulnerability (CVE-2021-27076)
CVE-2021-27076
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27131)
CVE-2021-27131
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27279)
CVE-2021-27279
CWE-707
Medium
WebLogic Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-27568)
CVE-2021-27568
CWE-754
Medium
Pega Infinity CVE-2021-27653 Vulnerability (CVE-2021-27653)
CVE-2021-27653
-
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27889)
CVE-2021-27889
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27902)
CVE-2021-27902
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27949)
CVE-2021-27949
CWE-707
Medium
Dolphin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27969)
CVE-2021-27969
CWE-707
Medium
«
1
...
254
255
256
...
309
»
