🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Missing Update
This page lists
23101 vulnerabilities
in this category.
Critical: 1474
High: 12458
Medium: 8395
Low: 770
Information: 4
Vulnerability Name
CVE
CWE
Severity
Atlassian Jira Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-20409)
CVE-2019-20409
CWE-138
Critical
WebLogic CVE-2023-22069 Vulnerability (CVE-2023-22069)
CVE-2023-22069
-
Critical
WebLogic CVE-2023-22072 Vulnerability (CVE-2023-22072)
CVE-2023-22072
-
Critical
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-20330)
CVE-2019-20330
CWE-502
Critical
phpMyFAQ Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2023-0789)
CVE-2023-0789
CWE-138
Critical
WebLogic CVE-2019-2645 Vulnerability (CVE-2019-2645)
CVE-2019-2645
-
Critical
PHP Incorrect Calculation of Buffer Size Vulnerability (CVE-2008-0599)
CVE-2008-0599
CWE-131
Critical
Oracle Application Server CVE-2008-0345 Vulnerability (CVE-2008-0345)
CVE-2008-0345
-
Critical
IBMHttpServer Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-4947)
CVE-2015-4947
CWE-119
Critical
WebLogic Improper Access Control Vulnerability (CVE-2019-2729)
CVE-2019-2729
CWE-284
Critical
WebLogic Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-2725)
CVE-2019-2725
CWE-138
Critical
Undertow CVE-2022-4492 Vulnerability (CVE-2022-4492)
CVE-2022-4492
-
Critical
Jboss EAP CVE-2022-4492 Vulnerability (CVE-2022-4492)
CVE-2022-4492
-
Critical
Oracle Database Server CVE-2008-0349 Vulnerability (CVE-2008-0349)
CVE-2008-0349
-
Critical
Oracle Application Server CVE-2008-0349 Vulnerability (CVE-2008-0349)
CVE-2008-0349
-
Critical
Oracle Application Server CVE-2008-0348 Vulnerability (CVE-2008-0348)
CVE-2008-0348
-
Critical
Oracle Database Server CVE-2008-0348 Vulnerability (CVE-2008-0348)
CVE-2008-0348
-
Critical
Oracle Database Server CVE-2008-0347 Vulnerability (CVE-2008-0347)
CVE-2008-0347
-
Critical
Oracle Application Server CVE-2008-0347 Vulnerability (CVE-2008-0347)
CVE-2008-0347
-
Critical
Oracle Database Server CVE-2008-0346 Vulnerability (CVE-2008-0346)
CVE-2008-0346
-
Critical
Oracle Application Server CVE-2008-0346 Vulnerability (CVE-2008-0346)
CVE-2008-0346
-
Critical
Oracle Database Server CVE-2008-0345 Vulnerability (CVE-2008-0345)
CVE-2008-0345
-
Critical
Oracle Database Server CVE-2008-0344 Vulnerability (CVE-2008-0344)
CVE-2008-0344
-
Critical
WebLogic CVE-2019-2646 Vulnerability (CVE-2019-2646)
CVE-2019-2646
-
Critical
Oracle Application Server CVE-2008-0344 Vulnerability (CVE-2008-0344)
CVE-2008-0344
-
Critical
Oracle Database Server CVE-2008-0343 Vulnerability (CVE-2008-0343)
CVE-2008-0343
-
Critical
Oracle Application Server CVE-2008-0343 Vulnerability (CVE-2008-0343)
CVE-2008-0343
-
Critical
Oracle Database Server CVE-2008-0342 Vulnerability (CVE-2008-0342)
CVE-2008-0342
-
Critical
Oracle Database Server CVE-2008-0341 Vulnerability (CVE-2008-0341)
CVE-2008-0341
-
Critical
Oracle Application Server CVE-2008-0340 Vulnerability (CVE-2008-0340)
CVE-2008-0340
-
Critical
Oracle Database Server CVE-2008-0340 Vulnerability (CVE-2008-0340)
CVE-2008-0340
-
Critical
Oracle Database Server CVE-2008-0339 Vulnerability (CVE-2008-0339)
CVE-2008-0339
-
Critical
Apache Traffic Server CVE-2015-5168 Vulnerability (CVE-2015-5168)
CVE-2015-5168
-
Critical
Apache Traffic Server CVE-2015-5206 Vulnerability (CVE-2015-5206)
CVE-2015-5206
-
Critical
phpMyFAQ Weak Password Requirements Vulnerability (CVE-2023-0307)
CVE-2023-0307
CWE-521
Critical
WebLogic CVE-2019-2658 Vulnerability (CVE-2019-2658)
CVE-2019-2658
-
Critical
phpMyFAQ Improper Authentication Vulnerability (CVE-2023-0311)
CVE-2023-0311
CWE-287
Critical
Internet Information Services Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-0075)
CVE-2008-0075
CWE-94
Critical
Oracle HTTP Server Other Vulnerability (CVE-2006-5354)
CVE-2006-5354
-
Critical
Oracle Application Server Other Vulnerability (CVE-2006-5353)
CVE-2006-5353
-
Critical
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-3873)
CVE-2019-3873
CWE-707
Critical
Joomla Other Vulnerability (CVE-2005-3773)
CVE-2005-3773
-
Critical
MyBB CVE-2006-0218 Vulnerability (CVE-2006-0218)
CVE-2006-0218
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4542)
CVE-2016-4542
CWE-119
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4543)
CVE-2016-4543
CWE-119
Critical
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2006-0200)
CVE-2006-0200
CWE-134
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4544)
CVE-2016-4544
CWE-119
Critical
silverstripeCMS CVE-2019-12204 Vulnerability (CVE-2019-12204)
CVE-2019-12204
-
Critical
Jetty Improper Access Control Vulnerability (CVE-2016-4800)
CVE-2016-4800
CWE-284
Critical
Joomla Deserialization of Untrusted Data Vulnerability (CVE-2019-11831)
CVE-2019-11831
CWE-502
Critical
Drupal Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-11831)
CVE-2019-11831
CWE-22
Critical
Jboss EAP CVE-2016-5018 Vulnerability (CVE-2016-5018)
CVE-2016-5018
-
Critical
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-11768)
CVE-2019-11768
CWE-138
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-5114)
CVE-2016-5114
CWE-119
Critical
Dotclear Other Vulnerability (CVE-2005-3957)
CVE-2005-3957
-
Critical
Atlassian Jira Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-11581)
CVE-2019-11581
CWE-138
Critical
Oracle Database Server CVE-2006-0257 Vulnerability (CVE-2006-0257)
CVE-2006-0257
-
Critical
Contao Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-11512)
CVE-2019-11512
CWE-138
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3453)
CVE-2005-3453
-
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3452)
CVE-2005-3452
-
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3451)
CVE-2005-3451
-
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3450)
CVE-2005-3450
-
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3449)
CVE-2005-3449
-
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3448)
CVE-2005-3448
-
Critical
Oracle Database Server Other Vulnerability (CVE-2005-3446)
CVE-2005-3446
-
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3446)
CVE-2005-3446
-
Critical
Oracle Application Server Other Vulnerability (CVE-2005-3445)
CVE-2005-3445
-
Critical
Oracle Database Server Other Vulnerability (CVE-2005-3445)
CVE-2005-3445
-
Critical
Oracle Database Server Other Vulnerability (CVE-2005-3444)
CVE-2005-3444
-
Critical
Oracle Database Server Other Vulnerability (CVE-2005-3443)
CVE-2005-3443
-
Critical
Oracle Database Server Other Vulnerability (CVE-2005-3440)
CVE-2005-3440
-
Critical
Oracle Database Server CVE-2006-0256 Vulnerability (CVE-2006-0256)
CVE-2006-0256
-
Critical
Oracle Database Server CVE-2006-0258 Vulnerability (CVE-2006-0258)
CVE-2006-0258
-
Critical
Oracle Database Server Other Vulnerability (CVE-2005-3437)
CVE-2005-3437
-
Critical
Oracle Database Server CVE-2006-0283 Vulnerability (CVE-2006-0283)
CVE-2006-0283
-
Critical
«
1
...
3
4
5
...
309
»
