Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0735)
CVE-2018-0735
CWE-327
Medium
MySQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0735)
CVE-2018-0735
CWE-327
Medium
Oracle Application Server Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0735)
CVE-2018-0735
CWE-327
Medium
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-0737)
CVE-2018-0737
CWE-327
Medium
OpenSSL Uncontrolled Recursion Vulnerability (CVE-2018-0739)
CVE-2018-0739
CWE-674
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-0864)
CVE-2018-0864
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36130)
CVE-2021-36130
CWE-707
Medium
Jenkins Improper Input Validation Vulnerability (CVE-2018-1000068)
CVE-2018-1000068
CWE-20
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9934)
CVE-2017-9934
CWE-707
Medium
Jenkins Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2018-1000193)
CVE-2018-1000193
CWE-138
Medium
MySQL CVE-2021-2201 Vulnerability (CVE-2021-2201)
CVE-2021-2201
-
Medium
Jenkins CVE-2018-1000408 Vulnerability (CVE-2018-1000408)
CVE-2018-1000408
-
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1000407)
CVE-2018-1000407
CWE-707
Medium
Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000406)
CVE-2018-1000406
CWE-22
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36131)
CVE-2021-36131
CWE-707
Medium
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-1000195)
CVE-2018-1000195
CWE-352
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1000192)
CVE-2018-1000192
CWE-200
Medium
RubyGems Improper Input Validation Vulnerability (CVE-2018-1000077)
CVE-2018-1000077
CWE-20
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1000170)
CVE-2018-1000170
CWE-707
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1000169)
CVE-2018-1000169
CWE-200
Medium
Jolokia Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1000129)
CVE-2018-1000129
CWE-707
Medium
Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-1000117)
CVE-2018-1000117
CWE-119
Medium
RubyGems Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000079)
CVE-2018-1000079
CWE-22
Medium
RubyGems Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1000078)
CVE-2018-1000078
CWE-707
Medium
MediaWiki Improper Privilege Management Vulnerability (CVE-2018-0503)
CVE-2018-0503
CWE-269
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9838)
CVE-2017-9838
CWE-707
Medium
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-8098)
CVE-2017-8098
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-8808)
CVE-2017-8808
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9063)
CVE-2017-9063
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9061)
CVE-2017-9061
CWE-707
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-8896)
CVE-2017-8896
CWE-707
Medium
Dolibarr Improper Authentication Vulnerability (CVE-2017-8879)
CVE-2017-8879
CWE-287
Medium
MediaWiki CVE-2017-8812 Vulnerability (CVE-2017-8812)
CVE-2017-8812
-
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2017-8811)
CVE-2017-8811
CWE-20
Medium
Craft CMS Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2017-8385)
CVE-2017-8385
CWE-640
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9068)
CVE-2017-9068
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-8384)
CVE-2017-8384
CWE-707
Medium
Craft CMS CVE-2017-8383 Vulnerability (CVE-2017-8383)
CVE-2017-8383
-
Medium
WordPress Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2017-8295)
CVE-2017-8295
CWE-640
Medium
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-8115)
CVE-2017-8115
CWE-22
Medium
MyBB Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-8104)
CVE-2017-8104
CWE-22
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-8103)
CVE-2017-8103
CWE-707
Medium
MySQL CVE-2021-2208 Vulnerability (CVE-2021-2208)
CVE-2021-2208
-
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9070)
CVE-2017-9070
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9836)
CVE-2017-9836
CWE-707
Medium
MySQL CVE-2021-2203 Vulnerability (CVE-2021-2203)
CVE-2021-2203
-
Medium
MySQL CVE-2021-2202 Vulnerability (CVE-2021-2202)
CVE-2021-2202
-
Medium
ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9786)
CVE-2017-9786
CWE-707
Medium
ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9783)
CVE-2017-9783
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9516)
CVE-2017-9516
CWE-707
Medium
MediaWiki Insecure Storage of Sensitive Information Vulnerability (CVE-2021-36127)
CVE-2021-36127
CWE-922
Medium
Atlassian Confluence Incorrect Default Permissions Vulnerability (CVE-2017-9505)
CVE-2017-9505
CWE-276
Medium
WebLogic CVE-2021-2204 Vulnerability (CVE-2021-2204)
CVE-2021-2204
-
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9071)
CVE-2017-9071
CWE-707
Medium
Piwigo URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-9464)
CVE-2017-9464
CWE-601
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-9463)
CVE-2017-9463
CWE-138
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9452)
CVE-2017-9452
CWE-707
Medium
ownCloud CVE-2017-9340 Vulnerability (CVE-2017-9340)
CVE-2017-9340
-
Medium
ownCloud CVE-2017-9339 Vulnerability (CVE-2017-9339)
CVE-2017-9339
-
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9338)
CVE-2017-9338
CWE-707
Medium
MySQL CVE-2017-10276 Vulnerability (CVE-2017-10276)
CVE-2017-10276
-
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35361)
CVE-2021-35361
CWE-707
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-19206)
CVE-2018-19206
CWE-707
Medium
Oracle HTTP Server CVE-2021-2480 Vulnerability (CVE-2021-2480)
CVE-2021-2480
-
Medium
MySQL CVE-2021-2481 Vulnerability (CVE-2021-2481)
CVE-2021-2481
-
Medium
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0702)
CVE-2016-0702
CWE-200
Medium
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0703)
CVE-2016-0703
CWE-200
Medium
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0704)
CVE-2016-0704
CWE-200
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0706)
CVE-2016-0706
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0724)
CVE-2016-0724
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-0725)
CVE-2016-0725
CWE-707
Medium
Nginx Resource Management Errors Vulnerability (CVE-2016-0747)
CVE-2016-0747
-
Medium
Ruby on Rails Improper Input Validation Vulnerability (CVE-2016-0753)
CVE-2016-0753
CWE-20
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0762)
CVE-2016-0762
CWE-264
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0763)
CVE-2016-0763
CWE-264
Medium
«
1
...
263
264
265
...
297
»
