Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Missing Update

This page lists 22224 vulnerabilities in this category.

Critical: 1394 High: 12186 Medium: 7891 Low: 749 Information: 4
Vulnerability Name
CVE
CWE
Severity
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-9416)
CVE-2016-9416
CWE-138
Critical
phpMyAdmin Other Vulnerability (CVE-2007-0203)
CVE-2007-0203
-
Critical
MyBB Improper Access Control Vulnerability (CVE-2016-9412)
CVE-2016-9412
CWE-284
Critical
Sqlite Use After Free Vulnerability (CVE-2020-11656)
CVE-2020-11656
CWE-416
Critical
qdPM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11811)
CVE-2020-11811
CWE-434
Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11812)
CVE-2020-11812
CWE-138
Critical
MyBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9403)
CVE-2016-9403
CWE-264
Critical
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11815)
CVE-2020-11815
CWE-434
Critical
Rukovoditel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-11816)
CVE-2020-11816
CWE-138
Critical
Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-11817)
CVE-2020-11817
CWE-434
Critical
phpMyAdmin Deserialization of Untrusted Data Vulnerability (CVE-2016-6620)
CVE-2016-6620
CWE-502
Critical
Joomla Other Vulnerability (CVE-2006-1047)
CVE-2006-1047
-
Critical
Magento XML Injection (aka Blind XPath Injection) Vulnerability (CVE-2019-8158)
CVE-2019-8158
CWE-91
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4539)
CVE-2016-4539
CWE-119
Critical
Moodle Other Vulnerability (CVE-2004-2236)
CVE-2004-2236
-
Critical
Moodle Other Vulnerability (CVE-2004-2235)
CVE-2004-2235
-
Critical
Moodle Other Vulnerability (CVE-2004-2233)
CVE-2004-2233
-
Critical
PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-24213)
CVE-2024-24213
CWE-138
Critical
Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-23897)
CVE-2024-23897
CWE-22
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4544)
CVE-2016-4544
CWE-119
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4543)
CVE-2016-4543
CWE-119
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4542)
CVE-2016-4542
CWE-119
Critical
PHP Other Vulnerability (CVE-2016-4541)
CVE-2016-4541
-
Critical
phpList Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-22249)
CVE-2020-22249
CWE-434
Critical
PHP Other Vulnerability (CVE-2016-4540)
CVE-2016-4540
-
Critical
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-22452)
CVE-2020-22452
CWE-138
Critical
GibbonEdu Improper Neutralization of Special Elements Used in a Template Engine Vulnerability (CVE-2024-24724)
CVE-2024-24724
CWE-138
Critical
PHP Improper Input Validation Vulnerability (CVE-2016-4538)
CVE-2016-4538
CWE-20
Critical
PHP Improper Input Validation Vulnerability (CVE-2016-4537)
CVE-2016-4537
CWE-20
Critical
Zikula Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-2293)
CVE-2014-2293
CWE-94
Critical
MyBB CVE-2020-22612 Vulnerability (CVE-2020-22612)
CVE-2020-22612
-
Critical
PHP Use After Free Vulnerability (CVE-2016-4473)
CVE-2016-4473
CWE-416
Critical
Lighttpd Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2323)
CVE-2014-2323
CWE-138
Critical
PHP Numeric Errors Vulnerability (CVE-2016-4346)
CVE-2016-4346
-
Critical
Oracle JRE CVE-2014-2397 Vulnerability (CVE-2014-2397)
CVE-2014-2397
-
Critical
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-21650)
CVE-2024-21650
CWE-94
Critical
PHP Numeric Errors Vulnerability (CVE-2016-4345)
CVE-2016-4345
-
Critical
PHP Numeric Errors Vulnerability (CVE-2016-4344)
CVE-2016-4344
-
Critical
Oracle Application Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2004-1371)
CVE-2004-1371
CWE-119
Critical
Moodle Other Vulnerability (CVE-2004-2237)
CVE-2004-2237
-
Critical
Oracle Database Server Improper Input Validation Vulnerability (CVE-2020-1953)
CVE-2020-1953
CWE-20
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4073)
CVE-2016-4073
CWE-119
Critical
Moodle CVE-2024-33999 Vulnerability (CVE-2024-33999)
CVE-2024-33999
-
Critical
CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-34832)
CVE-2024-34832
CWE-22
Critical
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-34502)
CVE-2024-34502
CWE-352
Critical
Oracle JRE CVE-2014-0455 Vulnerability (CVE-2014-0455)
CVE-2014-0455
-
Critical
Oracle JRE CVE-2014-0456 Vulnerability (CVE-2014-0456)
CVE-2014-0456
-
Critical
Oracle JRE CVE-2014-0457 Vulnerability (CVE-2014-0457)
CVE-2014-0457
-
Critical
Oracle Database Server CVE-2016-5555 Vulnerability (CVE-2016-5555)
CVE-2016-5555
-
Critical
Serendipity Other Vulnerability (CVE-2005-1452)
CVE-2005-1452
-
Critical
WebLogic CVE-2016-5535 Vulnerability (CVE-2016-5535)
CVE-2016-5535
-
Critical
WebLogic CVE-2016-5531 Vulnerability (CVE-2016-5531)
CVE-2016-5531
-
Critical
Serendipity Other Vulnerability (CVE-2005-1449)
CVE-2005-1449
-
Critical
Oracle JRE CVE-2014-0461 Vulnerability (CVE-2014-0461)
CVE-2014-0461
-
Critical
GlassFish CVE-2016-5528 Vulnerability (CVE-2016-5528)
CVE-2016-5528
-
Critical
Django Resource Management Errors Vulnerability (CVE-2014-0474)
CVE-2014-0474
-
Critical
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-1944)
CVE-2020-1944
CWE-444
Critical
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31996)
CVE-2024-31996
CWE-94
Critical
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31982)
CVE-2024-31982
CWE-94
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-5114)
CVE-2016-5114
CWE-119
Critical
Ruby on Rails CVE-2024-28103 Vulnerability (CVE-2024-28103)
CVE-2024-28103
-
Critical
Contao Deserialization of Untrusted Data Vulnerability (CVE-2014-1860)
CVE-2014-1860
CWE-502
Critical
Joomla Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2024-27185)
CVE-2024-27185
-
Critical
Jboss EAP CVE-2016-5018 Vulnerability (CVE-2016-5018)
CVE-2016-5018
-
Critical
ownCloud Improper Access Control Vulnerability (CVE-2014-2048)
CVE-2014-2048
CWE-284
Critical
ownCloud Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-2052)
CVE-2014-2052
CWE-611
Critical
Undertow Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-1745)
CVE-2020-1745
CWE-200
Critical
Jetty Improper Access Control Vulnerability (CVE-2016-4800)
CVE-2016-4800
CWE-284
Critical
Apache Tomcat Other Vulnerability (CVE-2020-1938)
CVE-2020-1938
-
Critical
Oracle JRE CVE-2014-2410 Vulnerability (CVE-2014-2410)
CVE-2014-2410
-
Critical
PHP Improper Input Validation Vulnerability (CVE-2016-4072)
CVE-2016-4072
CWE-20
Critical
WeBid Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-35409)
CVE-2024-35409
CWE-138
Critical
WebLogic CVE-2016-3551 Vulnerability (CVE-2016-3551)
CVE-2016-3551
-
Critical
Wordpress Plugin Backup Migration Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2023-6971)
CVE-2023-6971
CWE-829
Critical
osCommerce Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-6579)
CVE-2023-6579
CWE-138
Critical