Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
Drupal Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2017-6928)
CVE-2017-6928
CWE-732
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6929)
CVE-2017-6929
CWE-707
Medium
Drupal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-6931)
CVE-2017-6931
CWE-434
Medium
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-6932)
CVE-2017-6932
CWE-601
Medium
Django URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-7233)
CVE-2017-7233
CWE-601
Medium
Django URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-7234)
CVE-2017-7234
CWE-601
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7298)
CVE-2017-7298
CWE-707
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7320)
CVE-2017-7320
CWE-707
Medium
PostgreSQL Missing Encryption of Sensitive Data Vulnerability (CVE-2017-7485)
CVE-2017-7485
CWE-311
Medium
Moodle Improper Privilege Management Vulnerability (CVE-2017-7489)
CVE-2017-7489
CWE-269
Medium
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2017-7490)
CVE-2017-7490
CWE-668
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7531)
CVE-2017-7531
CWE-200
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6908)
CVE-2017-6908
CWE-707
Medium
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7983)
CVE-2017-7983
CWE-200
Medium
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-7989)
CVE-2017-7989
CWE-434
Medium
Joomla CVE-2017-7988 Vulnerability (CVE-2017-7988)
CVE-2017-7988
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7987)
CVE-2017-7987
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7986)
CVE-2017-7986
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7985)
CVE-2017-7985
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7984)
CVE-2017-7984
CWE-707
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7944)
CVE-2017-7944
CWE-707
Medium
Moodle Improper Privilege Management Vulnerability (CVE-2017-7532)
CVE-2017-7532
CWE-269
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-7890)
CVE-2017-7890
CWE-200
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7887)
CVE-2017-7887
CWE-707
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7725)
CVE-2017-7725
CWE-707
Medium
Apache Tomcat Insufficient Verification of Data Authenticity Vulnerability (CVE-2017-7674)
CVE-2017-7674
CWE-345
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7579)
CVE-2017-7579
CWE-707
Medium
Undertow Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2017-7559)
CVE-2017-7559
CWE-444
Medium
Drupal Improper Input Validation Vulnerability (CVE-2017-6921)
CVE-2017-6921
CWE-20
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6905)
CVE-2017-6905
CWE-707
Medium
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-8057)
CVE-2017-8057
CWE-200
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5833)
CVE-2017-5833
CWE-707
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5876)
CVE-2017-5876
CWE-707
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5875)
CVE-2017-5875
CWE-707
Medium
OpenVPN AS Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2017-5868)
CVE-2017-5868
CWE-707
Medium
ownCloud Uncontrolled Resource Consumption Vulnerability (CVE-2017-5867)
CVE-2017-5867
CWE-400
Medium
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5866)
CVE-2017-5866
CWE-200
Medium
ownCloud Incorrect Authorization Vulnerability (CVE-2021-35949)
CVE-2021-35949
CWE-863
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5832)
CVE-2017-5832
CWE-707
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6003)
CVE-2017-6003
CWE-707
Medium
ReviveAdserver Session Fixation Vulnerability (CVE-2017-5831)
CVE-2017-5831
CWE-384
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5612)
CVE-2017-5612
CWE-707
Medium
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5610)
CVE-2017-5610
CWE-200
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5608)
CVE-2017-5608
CWE-707
Medium
b2evolution Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5553)
CVE-2017-5553
CWE-707
Medium
ownCloud Session Fixation Vulnerability (CVE-2021-35948)
CVE-2021-35948
CWE-384
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-5877)
CVE-2017-5877
CWE-707
Medium
TYPO3 Cleartext Transmission of Sensitive Information Vulnerability (CVE-2017-6370)
CVE-2017-6370
CWE-319
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6820)
CVE-2017-6820
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6814)
CVE-2017-6814
CWE-707
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-6819)
CVE-2017-6819
CWE-352
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6818)
CVE-2017-6818
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6817)
CVE-2017-6817
CWE-707
Medium
WordPress Incorrect Authorization Vulnerability (CVE-2017-6816)
CVE-2017-6816
CWE-863
Medium
WebLogic CVE-2021-2211 Vulnerability (CVE-2021-2211)
CVE-2021-2211
-
Medium
WordPress Improper Input Validation Vulnerability (CVE-2017-6815)
CVE-2017-6815
CWE-20
Medium
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-6514)
CVE-2017-6514
CWE-200
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6446)
CVE-2017-6446
CWE-707
Medium
MySQL CVE-2021-2212 Vulnerability (CVE-2021-2212)
CVE-2021-2212
-
Medium
PleskWin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976)
CVE-2021-35976
CWE-707
Medium
PleskLin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35976)
CVE-2021-35976
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35959)
CVE-2021-35959
CWE-707
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6483)
CVE-2017-6483
CWE-707
Medium
Contao Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35955)
CVE-2021-35955
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-8052)
CVE-2017-8052
CWE-707
Medium
concrete5 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-8082)
CVE-2017-8082
CWE-352
Medium
Jenkins Session Fixation Vulnerability (CVE-2018-1000409)
CVE-2018-1000409
CWE-384
Medium
Jenkins Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-1000067)
CVE-2018-1000067
CWE-918
Medium
MediaWiki Insertion of Sensitive Information into Log File Vulnerability (CVE-2018-0504)
CVE-2018-0504
CWE-532
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-36129)
CVE-2021-36129
CWE-732
Medium
MediaWiki Improper Authentication Vulnerability (CVE-2018-0505)
CVE-2018-0505
CWE-287
Medium
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-0585)
CVE-2018-0585
CWE-707
Medium
Mailman Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-0618)
CVE-2018-0618
CWE-707
Medium
OpenSSL CVE-2018-0733 Vulnerability (CVE-2018-0733)
CVE-2018-0733
-
Medium
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0734)
CVE-2018-0734
CWE-327
Medium
«
1
...
262
263
264
...
297
»
