Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Missing Update

This page lists 23168 vulnerabilities in this category.

Critical: 1485 High: 12484 Medium: 8421 Low: 774 Information: 4
Vulnerability Name
CVE
CWE
Severity
Apache HTTP Server Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2016-4975)
CVE-2016-4975
CWE-707
Medium
MySQL CVE-2016-5630 Vulnerability (CVE-2016-5630)
CVE-2016-5630
-
Medium
Python Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2016-5699)
CVE-2016-5699
CWE-113
Medium
Swagger UI Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5682)
CVE-2016-5682
CWE-707
Medium
MySQL CVE-2016-5635 Vulnerability (CVE-2016-5635)
CVE-2016-5635
-
Medium
MySQL CVE-2016-5634 Vulnerability (CVE-2016-5634)
CVE-2016-5634
-
Medium
MySQL CVE-2016-5633 Vulnerability (CVE-2016-5633)
CVE-2016-5633
-
Medium
MySQL CVE-2016-5632 Vulnerability (CVE-2016-5632)
CVE-2016-5632
-
Medium
MySQL CVE-2016-5631 Vulnerability (CVE-2016-5631)
CVE-2016-5631
-
Medium
MySQL CVE-2016-5629 Vulnerability (CVE-2016-5629)
CVE-2016-5629
-
Medium
MySQL CVE-2016-5584 Vulnerability (CVE-2016-5584)
CVE-2016-5584
-
Medium
MySQL CVE-2016-5628 Vulnerability (CVE-2016-5628)
CVE-2016-5628
-
Medium
MySQL CVE-2016-5627 Vulnerability (CVE-2016-5627)
CVE-2016-5627
-
Medium
MySQL CVE-2016-5626 Vulnerability (CVE-2016-5626)
CVE-2016-5626
-
Medium
MySQL CVE-2016-5624 Vulnerability (CVE-2016-5624)
CVE-2016-5624
-
Medium
MySQL CVE-2016-5612 Vulnerability (CVE-2016-5612)
CVE-2016-5612
-
Medium
MySQL CVE-2016-5609 Vulnerability (CVE-2016-5609)
CVE-2016-5609
-
Medium
WebLogic Improper Access Control Vulnerability (CVE-2016-5601)
CVE-2016-5601
CWE-284
Medium
Jboss EAP Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability (CVE-2016-4993)
CVE-2016-4993
CWE-707
Medium
ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4848)
CVE-2016-4848
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5704)
CVE-2016-5704
CWE-707
Medium
MySQL CVE-2016-3501 Vulnerability (CVE-2016-3501)
CVE-2016-3501
-
Medium
Dot CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3688)
CVE-2016-3688
CWE-200
Medium
MySQL CVE-2016-3615 Vulnerability (CVE-2016-3615)
CVE-2016-3615
-
Medium
MySQL CVE-2016-3614 Vulnerability (CVE-2016-3614)
CVE-2016-3614
-
Medium
GlassFish CVE-2016-3608 Vulnerability (CVE-2016-3608)
CVE-2016-3608
-
Medium
MySQL CVE-2016-3588 Vulnerability (CVE-2016-3588)
CVE-2016-3588
-
Medium
MySQL CVE-2016-3521 Vulnerability (CVE-2016-3521)
CVE-2016-3521
-
Medium
MySQL CVE-2016-3518 Vulnerability (CVE-2016-3518)
CVE-2016-3518
-
Medium
MySQL CVE-2016-3495 Vulnerability (CVE-2016-3495)
CVE-2016-3495
-
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3722)
CVE-2016-3722
CWE-264
Medium
MySQL CVE-2016-3492 Vulnerability (CVE-2016-3492)
CVE-2016-3492
-
Medium
MySQL CVE-2016-3486 Vulnerability (CVE-2016-3486)
CVE-2016-3486
-
Medium
MySQL CVE-2016-3459 Vulnerability (CVE-2016-3459)
CVE-2016-3459
-
Medium
WebLogic CVE-2016-3445 Vulnerability (CVE-2016-3445)
CVE-2016-3445
-
Medium
MySQL CVE-2016-3424 Vulnerability (CVE-2016-3424)
CVE-2016-3424
-
Medium
WebLogic CVE-2016-3416 Vulnerability (CVE-2016-3416)
CVE-2016-3416
-
Medium
Python Other Vulnerability (CVE-2016-3189)
CVE-2016-3189
-
Medium
Jenkins DEPRECATED: Code Vulnerability (CVE-2016-3721)
CVE-2016-3721
-
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3723)
CVE-2016-3723
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4567)
CVE-2016-4567
CWE-707
Medium
Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2016-4055)
CVE-2016-4055
CWE-400
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4566)
CVE-2016-4566
CWE-707
Medium
Plupload Cross-site Scripting (XSS) Vulnerability (CVE-2016-4566)
CVE-2016-4566
-
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-4412)
CVE-2016-4412
-
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4318)
CVE-2016-4318
CWE-707
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4317)
CVE-2016-4317
CWE-707
Medium
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2016-4068)
CVE-2016-4068
-
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-4056)
CVE-2016-4056
CWE-707
Medium
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-4043)
CVE-2016-4043
CWE-264
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3724)
CVE-2016-3724
CWE-200
Medium
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-4042)
CVE-2016-4042
CWE-200
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-3971)
CVE-2016-3971
CWE-707
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-3733)
CVE-2016-3733
CWE-284
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3732)
CVE-2016-3732
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3731)
CVE-2016-3731
CWE-200
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-3729)
CVE-2016-3729
CWE-284
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3727)
CVE-2016-3727
CWE-200
Medium
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3725)
CVE-2016-3725
CWE-264
Medium
phpMyAdmin Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-5701)
CVE-2016-5701
CWE-138
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5705)
CVE-2016-5705
CWE-707
Medium
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2016-8627)
CVE-2016-8627
CWE-400
Medium
OpenSSL Key Management Errors Vulnerability (CVE-2016-7056)
CVE-2016-7056
-
Medium
Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-7137)
CVE-2016-7137
CWE-601
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7136)
CVE-2016-7136
CWE-707
Medium
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-7135)
CVE-2016-7135
CWE-22
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7128)
CVE-2016-7128
CWE-200
Medium
WebLogic Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7103)
CVE-2016-7103
CWE-707
Medium
JQuery UI Cross-site Scripting (XSS) Vulnerability (CVE-2016-7103)
CVE-2016-7103
-
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7061)
CVE-2016-7061
CWE-200
Medium
OpenSSL Key Management Errors Vulnerability (CVE-2016-7055)
CVE-2016-7055
-
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7139)
CVE-2016-7139
CWE-707
Medium
Jboss EAP Resource Management Errors Vulnerability (CVE-2016-7046)
CVE-2016-7046
-
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6897)
CVE-2016-6897
CWE-352
Medium
Apache Tomcat CVE-2016-6794 Vulnerability (CVE-2016-6794)
CVE-2016-6794
-
Medium