Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Missing Update

This page lists 22224 vulnerabilities in this category.

Critical: 1394 High: 12186 Medium: 7891 Low: 749 Information: 4
Vulnerability Name
CVE
CWE
Severity
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26273)
CVE-2024-26273
CWE-352
High
Envoy Proxy Detection of Error Condition Without Action Vulnerability (CVE-2024-30255)
CVE-2024-30255
CWE-390
High
Chamilo Incorrect Authorization Vulnerability (CVE-2024-30616)
CVE-2024-30616
CWE-863
High
SharePoint CVE-2024-32987 Vulnerability (CVE-2024-32987)
CVE-2024-32987
-
High
XWikiplatform Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-31988)
CVE-2024-31988
CWE-352
High
Envoy Proxy Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2024-32976)
CVE-2024-32976
CWE-835
High
Envoy Proxy Integer Underflow (Wrap or Wraparound) Vulnerability (CVE-2024-32975)
CVE-2024-32975
CWE-191
High
Envoy Proxy Use After Free Vulnerability (CVE-2024-32974)
CVE-2024-32974
CWE-416
High
Envoy Proxy Reachable Assertion Vulnerability (CVE-2024-32475)
CVE-2024-32475
CWE-617
High
WeBid Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-32166)
CVE-2024-32166
CWE-639
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31997)
CVE-2024-31997
CWE-862
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31987)
CVE-2024-31987
CWE-862
High
Chamilo CVE-2024-30619 Vulnerability (CVE-2024-30619)
CVE-2024-30619
-
High
XWikiplatform Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-31986)
CVE-2024-31986
CWE-352
High
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31984)
CVE-2024-31984
CWE-94
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31983)
CVE-2024-31983
CWE-862
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-31981)
CVE-2024-31981
CWE-862
High
Dolibarr Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-31503)
CVE-2024-31503
CWE-352
High
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-31465)
CVE-2024-31465
CWE-94
High
Apache Traffic Server CVE-2024-31309 Vulnerability (CVE-2024-31309)
CVE-2024-31309
-
High
Django Improper Handling of Length Parameter Inconsistency Vulnerability (CVE-2024-38875)
CVE-2024-38875
CWE-130
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2024-39573)
CVE-2024-39573
CWE-20
High
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26272)
CVE-2024-26272
CWE-352
High
Next.js Incorrect Authorization Vulnerability (CVE-2024-51479)
CVE-2024-51479
CWE-863
High
Craft CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-52293)
CVE-2024-52293
CWE-22
High
Craft CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-52291)
CVE-2024-52291
CWE-22
High
Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51487)
CVE-2024-51487
CWE-352
High
Ampache Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-51486)
CVE-2024-51486
CWE-707
High
Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51485)
CVE-2024-51485
CWE-352
High
Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-51484)
CVE-2024-51484
CWE-352
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2024-50305)
CVE-2024-50305
CWE-20
High
Envoy Proxy Always-Incorrect Control Flow Implementation Vulnerability (CVE-2024-53269)
CVE-2024-53269
CWE-670
High
Werkzeug WSGI Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-49767)
CVE-2024-49767
CWE-770
High
SharePoint CVE-2024-49070 Vulnerability (CVE-2024-49070)
CVE-2024-49070
-
High
SharePoint CVE-2024-49068 Vulnerability (CVE-2024-49068)
CVE-2024-49068
-
High
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-48311)
CVE-2024-48311
CWE-352
High
Next.js Uncontrolled Recursion Vulnerability (CVE-2024-47831)
CVE-2024-47831
CWE-674
High
Apache HTTP Server Improper Neutralization of Escape, Meta, or Control Sequences Vulnerability (CVE-2024-47252)
CVE-2024-47252
CWE-150
High
Tornado Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-52804)
CVE-2024-52804
CWE-770
High
Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2024-53270)
CVE-2024-53270
CWE-476
High
Envoy Proxy CVE-2024-45810 Vulnerability (CVE-2024-45810)
CVE-2024-45810
-
High
TYPO3 Exposed Dangerous Method or Function Vulnerability (CVE-2024-55921)
CVE-2024-55921
CWE-749
High
Python Inefficient Regular Expression Complexity Vulnerability (CVE-2024-6232)
CVE-2024-6232
CWE-1333
High
OpenSSL Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2024-6119)
CVE-2024-6119
CWE-843
High
ZenCart Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2024-5762)
CVE-2024-5762
CWE-829
High
PHP Improper Encoding or Escaping of Output Vulnerability (CVE-2024-5585)
CVE-2024-5585
CWE-116
High
Perl Out-of-bounds Write Vulnerability (CVE-2024-56406)
CVE-2024-56406
CWE-787
High
TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-55924)
CVE-2024-55924
CWE-352
High
phpMyFAQ User Interface (UI) Misrepresentation of Critical Information Vulnerability (CVE-2024-55889)
CVE-2024-55889
CWE-451
High
Envoy Proxy Always-Incorrect Control Flow Implementation Vulnerability (CVE-2024-53271)
CVE-2024-53271
CWE-670
High
Beego Framework Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2024-55885)
CVE-2024-55885
CWE-327
High
XWikiplatform Missing Authorization Vulnerability (CVE-2024-55879)
CVE-2024-55879
CWE-862
High
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-55877)
CVE-2024-55877
CWE-94
High
XWikiplatform Incorrect Authorization Vulnerability (CVE-2024-55662)
CVE-2024-55662
CWE-863
High
Drupal Improper Handling of Case Sensitivity Vulnerability (CVE-2024-55634)
CVE-2024-55634
CWE-178
High
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-53907)
CVE-2024-53907
CWE-770
High
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2024-53868)
CVE-2024-53868
-
High
Next.js Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-46982)
CVE-2024-46982
CWE-639
High
Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2024-45809)
CVE-2024-45809
CWE-476
High
Django Improper Handling of Length Parameter Inconsistency Vulnerability (CVE-2024-39614)
CVE-2024-39614
CWE-130
High
PrestaShop Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-41651)
CVE-2024-41651
CWE-918
High
LimeSurvey Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-42902)
CVE-2024-42902
CWE-94
High
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2024-42516)
CVE-2024-42516
CWE-20
High
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2024-41991)
CVE-2024-41991
CWE-1284
High
Django CVE-2024-41990 Vulnerability (CVE-2024-41990)
CVE-2024-41990
-
High
Django CVE-2024-41989 Vulnerability (CVE-2024-41989)
CVE-2024-41989
-
High
Craft CMS Improper Authentication Vulnerability (CVE-2024-41800)
CVE-2024-41800
CWE-287
High
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-40898)
CVE-2024-40898
CWE-918
High
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-43204)
CVE-2024-43204
CWE-918
High
Joomla Other Vulnerability (CVE-2024-40749)
CVE-2024-40749
-
High
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40748)
CVE-2024-40748
CWE-707
High
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2024-40597)
CVE-2024-40597
CWE-200
High
Beego Framework Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2024-40465)
CVE-2024-40465
CWE-327
High
Beego Framework Improper Certificate Validation Vulnerability (CVE-2024-40464)
CVE-2024-40464
CWE-295
High
Next.js Uncontrolled Resource Consumption Vulnerability (CVE-2024-39693)
CVE-2024-39693
CWE-400
High