Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Missing Update

This page lists 23168 vulnerabilities in this category.

Critical: 1485 High: 12484 Medium: 8421 Low: 774 Information: 4
Vulnerability Name
CVE
CWE
Severity
XWikiplatform Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-24128)
CVE-2026-24128
CWE-707
Medium
Craft CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2026-25494)
CVE-2026-25494
CWE-918
Medium
MySQL CVE-2020-14550 Vulnerability (CVE-2020-14550)
CVE-2020-14550
-
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2026-32990)
CVE-2026-32990
CWE-20
Medium
Oracle JRE Protection Mechanism Failure Vulnerability (CVE-2026-22013)
CVE-2026-22013
CWE-693
Medium
MySQL CVE-2020-14838 Vulnerability (CVE-2020-14838)
CVE-2020-14838
-
Medium
Chamilo URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2026-32932)
CVE-2026-32932
CWE-601
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-14475)
CVE-2020-14475
CWE-707
Medium
Oracle JRE Uncontrolled Resource Consumption Vulnerability (CVE-2026-22021)
CVE-2026-22021
CWE-400
Medium
MySQL CVE-2020-14539 Vulnerability (CVE-2020-14539)
CVE-2020-14539
-
Medium
MySQL CVE-2020-14837 Vulnerability (CVE-2020-14837)
CVE-2020-14837
-
Medium
Angular Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-22610)
CVE-2026-22610
CWE-707
Medium
MySQL CVE-2020-14540 Vulnerability (CVE-2020-14540)
CVE-2020-14540
-
Medium
MySQL CVE-2020-14547 Vulnerability (CVE-2020-14547)
CVE-2020-14547
-
Medium
MySQL CVE-2020-14836 Vulnerability (CVE-2020-14836)
CVE-2020-14836
-
Medium
phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-32629)
CVE-2026-32629
CWE-707
Medium
OpenSSL Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2026-22795)
CVE-2026-22795
CWE-754
Medium
MySQL CVE-2020-14559 Vulnerability (CVE-2020-14559)
CVE-2020-14559
-
Medium
MySQL CVE-2020-14553 Vulnerability (CVE-2020-14553)
CVE-2020-14553
-
Medium
OpenSSL Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2026-22796)
CVE-2026-22796
CWE-754
Medium
Oracle JRE CVE-2020-14556 Vulnerability (CVE-2020-14556)
CVE-2020-14556
-
Medium
Craft CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2026-32262)
CVE-2026-32262
CWE-22
Medium
MySQL CVE-2020-14830 Vulnerability (CVE-2020-14830)
CVE-2020-14830
-
Medium
CakePHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-23643)
CVE-2026-23643
CWE-707
Medium
MySQL CVE-2020-14829 Vulnerability (CVE-2020-14829)
CVE-2020-14829
-
Medium
SharePoint Improper Input Validation Vulnerability (CVE-2026-32201)
CVE-2026-32201
CWE-20
Medium
MySQL CVE-2020-14827 Vulnerability (CVE-2020-14827)
CVE-2020-14827
-
Medium
MySQL CVE-2020-14821 Vulnerability (CVE-2020-14821)
CVE-2020-14821
-
Medium
WebLogic CVE-2020-14557 Vulnerability (CVE-2020-14557)
CVE-2020-14557
-
Medium
Chamilo Server-Side Request Forgery (SSRF) Vulnerability (CVE-2026-31941)
CVE-2026-31941
CWE-918
Medium
MySQL CVE-2020-14814 Vulnerability (CVE-2020-14814)
CVE-2020-14814
-
Medium
MySQL CVE-2020-14631 Vulnerability (CVE-2020-14631)
CVE-2020-14631
-
Medium
MySQL CVE-2020-14800 Vulnerability (CVE-2020-14800)
CVE-2020-14800
-
Medium
Apache HTTP Server Observable Timing Discrepancy Vulnerability (CVE-2026-33006)
CVE-2026-33006
CWE-208
Medium
MySQL CVE-2020-14790 Vulnerability (CVE-2020-14790)
CVE-2020-14790
-
Medium
Grafana Out-of-bounds Write Vulnerability (CVE-2026-27879)
CVE-2026-27879
CWE-787
Medium
MySQL CVE-2020-14793 Vulnerability (CVE-2020-14793)
CVE-2020-14793
-
Medium
MySQL CVE-2020-14725 Vulnerability (CVE-2020-14725)
CVE-2020-14725
-
Medium
WebLogic CVE-2020-14757 Vulnerability (CVE-2020-14757)
CVE-2020-14757
-
Medium
Moodle Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-26047)
CVE-2026-26047
CWE-770
Medium
MySQL CVE-2020-14760 Vulnerability (CVE-2020-14760)
CVE-2020-14760
-
Medium
Oracle JRE CVE-2020-14792 Vulnerability (CVE-2020-14792)
CVE-2020-14792
-
Medium
MySQL CVE-2020-14765 Vulnerability (CVE-2020-14765)
CVE-2020-14765
-
Medium
MySQL CVE-2020-14769 Vulnerability (CVE-2020-14769)
CVE-2020-14769
-
Medium
MySQL CVE-2020-14773 Vulnerability (CVE-2020-14773)
CVE-2020-14773
-
Medium
MySQL CVE-2020-14775 Vulnerability (CVE-2020-14775)
CVE-2020-14775
-
Medium
Caddy Web Server Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2026-27589)
CVE-2026-27589
CWE-352
Medium
MySQL CVE-2020-14776 Vulnerability (CVE-2020-14776)
CVE-2020-14776
-
Medium
MySQL CVE-2020-14777 Vulnerability (CVE-2020-14777)
CVE-2020-14777
-
Medium
XWikiplatform Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2026-26000)
CVE-2026-26000
CWE-1021
Medium
MySQL CVE-2020-14789 Vulnerability (CVE-2020-14789)
CVE-2020-14789
-
Medium
Caddy Web Server Improper Input Validation Vulnerability (CVE-2026-27585)
CVE-2026-27585
CWE-20
Medium
Werkzeug WSGI Improper Handling of Windows Device Names Vulnerability (CVE-2026-27199)
CVE-2026-27199
CWE-67
Medium
Craft CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2026-27129)
CVE-2026-27129
CWE-918
Medium
Craft CMS Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2026-27128)
CVE-2026-27128
CWE-367
Medium
Craft CMS Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2026-27127)
CVE-2026-27127
CWE-367
Medium
MySQL CVE-2020-14786 Vulnerability (CVE-2020-14786)
CVE-2020-14786
-
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-27126)
CVE-2026-27126
CWE-707
Medium
Envoy Proxy Off-by-one Error Vulnerability (CVE-2026-26309)
CVE-2026-26309
CWE-193
Medium
MySQL CVE-2020-14785 Vulnerability (CVE-2020-14785)
CVE-2020-14785
-
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2026-27100)
CVE-2026-27100
CWE-200
Medium
Envoy Proxy Use After Free Vulnerability (CVE-2026-26311)
CVE-2026-26311
CWE-416
Medium
osTicket Observable Discrepancy Vulnerability (CVE-2026-26895)
CVE-2026-26895
CWE-203
Medium
MySQL CVE-2020-14794 Vulnerability (CVE-2020-14794)
CVE-2020-14794
-
Medium
MySQL CVE-2020-14702 Vulnerability (CVE-2020-14702)
CVE-2020-14702
-
Medium
Craft CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2026-29113)
CVE-2026-29113
CWE-352
Medium
MySQL CVE-2020-14643 Vulnerability (CVE-2020-14643)
CVE-2020-14643
-
Medium
Craft CMS Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2026-29069)
CVE-2026-29069
CWE-639
Medium
Next.js Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2026-29057)
CVE-2026-29057
-
Medium
MySQL CVE-2020-14632 Vulnerability (CVE-2020-14632)
CVE-2020-14632
-
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2026-25496)
CVE-2026-25496
CWE-707
Medium
MySQL CVE-2020-14799 Vulnerability (CVE-2020-14799)
CVE-2020-14799
-
Medium
Craft CMS Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2026-28782)
CVE-2026-28782
CWE-639
Medium
Craft CMS Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2026-28781)
CVE-2026-28781
CWE-639
Medium
WebLogic CVE-2020-14636 Vulnerability (CVE-2020-14636)
CVE-2020-14636
-
Medium