Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
WordPress 4.5.3 Directory Traversal Vulnerability (4.5.3)
CVE-2016-10148
CWE-22
High
WordPress 4.4.x Same Origin Method Execution (SOME) Vulnerability (4.4 - 4.4.2)
CVE-2016-4566
CWE-79
High
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.1)
CVE-2016-2222
CWE-918
High
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.4)
CVE-2016-7169
CWE-79
High
WordPress 4.4.x Cross-Site Scripting Vulnerability (4.4 - 4.4.2)
CVE-2016-4567
CWE-79
High
WordPress 4.2.x Same Origin Method Execution (SOME) Vulnerability (4.2 - 4.2.7)
CVE-2016-4566
CWE-79
High
WordPress 4.4 Cross-Site Scripting Vulnerability (4.4)
CVE-2016-1564
CWE-79
High
WordPress 4.3.x Same Origin Method Execution (SOME) Vulnerability (4.3 - 4.3.3)
CVE-2016-4566
CWE-79
High
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.4)
CVE-2016-5839
CWE-400
High
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.2)
CVE-2016-2222
CWE-918
High
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.5)
CVE-2016-7169
CWE-79
High
WordPress 4.3.x Cross-Site Scripting Vulnerability (4.3 - 4.3.3)
CVE-2016-4567
CWE-79
High
WordPress 4.3.x Cross-Site Scripting Vulnerability (4.3 - 4.3.1)
CVE-2016-1564
CWE-79
High
WordPress 2.3.3 Directory Traversal Vulnerability (0.6.2 - 2.3.3)
CVE-2008-4769
CWE-22
High
WordPress 'wp-register.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1)
CVE-2007-5106
CWE-79
High
ProjectSend Use of Insufficiently Random Values Vulnerability (CVE-2024-7659)
CVE-2024-7659
CWE-330
High
Drupal Improper Control of Dynamically-Managed Code Resources Vulnerability (CVE-2025-31674)
CVE-2025-31674
CWE-913
High
Moodle Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2025-3625)
CVE-2025-3625
CWE-639
High
XWikiplatform Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-32968)
CVE-2025-32968
CWE-138
High
Django Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-32873)
CVE-2025-32873
CWE-770
High
EspoCRM Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2025-32390)
CVE-2025-32390
CWE-138
High
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-32044)
CVE-2025-32044
CWE-200
High
Apache Traffic Server Improper Access Control Vulnerability (CVE-2025-31698)
CVE-2025-31698
CWE-284
High
Apache Tomcat Incomplete Cleanup Vulnerability (CVE-2025-31650)
CVE-2025-31650
CWE-459
High
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2025-3641)
CVE-2025-3641
CWE-94
High
WebLogic Missing Authentication for Critical Function Vulnerability (CVE-2025-30762)
CVE-2025-30762
CWE-306
High
Oracle Database Server Incorrect Authorization Vulnerability (CVE-2025-30751)
CVE-2025-30751
CWE-863
High
Oracle JRE CVE-2025-30749 Vulnerability (CVE-2025-30749)
CVE-2025-30749
-
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-30384)
CVE-2025-30384
CWE-502
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-30382)
CVE-2025-30382
CWE-502
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-30378)
CVE-2025-30378
CWE-502
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-3638)
CVE-2025-3638
CWE-352
High
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2025-3642)
CVE-2025-3642
CWE-94
High
GeoServer Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2025-30145)
CVE-2025-30145
CWE-835
High
SharePoint Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-47172)
CVE-2025-47172
CWE-138
High
Apache Tomcat Improper Resource Shutdown or Release Vulnerability (CVE-2025-48989)
CVE-2025-48989
CWE-404
High
Apache Tomcat Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2025-48988)
CVE-2025-48988
CWE-770
High
MyBB Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2025-48940)
CVE-2025-48940
CWE-22
High
XWikiplatform CVE-2025-48063 Vulnerability (CVE-2025-48063)
CVE-2025-48063
-
High
TYPO3 Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2025-47941)
CVE-2025-47941
CWE-288
High
TYPO3 Unverified Ownership Vulnerability (CVE-2025-47940)
CVE-2025-47940
CWE-283
High
SharePoint Heap-based Buffer Overflow Vulnerability (CVE-2025-47169)
CVE-2025-47169
CWE-122
High
Mailman Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2025-43919)
CVE-2025-43919
CWE-22
High
SharePoint Use After Free Vulnerability (CVE-2025-47168)
CVE-2025-47168
CWE-416
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-47166)
CVE-2025-47166
CWE-502
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-47163)
CVE-2025-47163
CWE-502
High
Craft CMS Improper Neutralization of Special Elements Used in a Template Engine Vulnerability (CVE-2025-46731)
CVE-2025-46731
CWE-138
High
Apache Tomcat Improper Handling of Case Sensitivity Vulnerability (CVE-2025-46701)
CVE-2025-46701
CWE-178
High
Mailman Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2025-43920)
CVE-2025-43920
CWE-138
High
Envoy Proxy CVE-2025-30157 Vulnerability (CVE-2025-30157)
CVE-2025-30157
-
High
MOVEit Transfer Improper Privilege Management Vulnerability (CVE-2025-2324)
CVE-2025-2324
CWE-269
High
Apache Tomcat Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2025-49125)
CVE-2025-49125
CWE-288
High
WordPress Ultimate Member Plugin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-0308)
CVE-2025-0308
CWE-138
High
SharePoint CVE-2025-21400 Vulnerability (CVE-2025-21400)
CVE-2025-21400
-
High
SharePoint CVE-2025-21348 Vulnerability (CVE-2025-21348)
CVE-2025-21348
-
High
SharePoint CVE-2025-21344 Vulnerability (CVE-2025-21344)
CVE-2025-21344
-
High
Jetty Uncontrolled Resource Consumption Vulnerability (CVE-2025-1948)
CVE-2025-1948
CWE-400
High
PHP Improper Input Validation Vulnerability (CVE-2025-1736)
CVE-2025-1736
CWE-20
High
PHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-1735)
CVE-2025-1735
CWE-138
High
Jetty Uncontrolled Resource Consumption Vulnerability (CVE-2024-9823)
CVE-2024-9823
CWE-400
High
Oracle JRE Improper Access Control Vulnerability (CVE-2025-21587)
CVE-2025-21587
CWE-284
High
Python Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2024-9287)
CVE-2024-9287
CWE-138
High
Grafana Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2024-9264)
CVE-2024-9264
CWE-138
High
PHP Other Vulnerability (CVE-2024-8927)
CVE-2024-8927
-
High
PHP Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2024-8926)
CVE-2024-8926
CWE-138
High
Payara Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-8215)
CVE-2024-8215
CWE-707
High
Jboss EAP CVE-2024-7885 Vulnerability (CVE-2024-7885)
CVE-2024-7885
-
High
WebLogic Uncontrolled Resource Consumption Vulnerability (CVE-2025-21549)
CVE-2025-21549
CWE-400
High
XWikiplatform Missing Authorization Vulnerability (CVE-2025-23025)
CVE-2025-23025
CWE-862
High
SharePoint CVE-2025-29976 Vulnerability (CVE-2025-29976)
CVE-2025-29976
-
High
MyBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-29457)
CVE-2025-29457
CWE-918
High
XWikiplatform Incorrect Authorization Vulnerability (CVE-2025-29924)
CVE-2025-29924
CWE-863
High
SharePoint Improper Authorization Vulnerability (CVE-2025-29794)
CVE-2025-29794
CWE-285
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2025-29793)
CVE-2025-29793
CWE-502
High
MyBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-29460)
CVE-2025-29460
CWE-918
High
«
1
...
49
50
51
...
297
»
