Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Missing Update
This page lists
22224 vulnerabilities
in this category.
Critical: 1394
High: 12186
Medium: 7891
Low: 749
Information: 4
Vulnerability Name
CVE
CWE
Severity
Craft CMS Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2022-29933)
CVE-2022-29933
CWE-640
High
Apache Tomcat CVE-2022-29885 Vulnerability (CVE-2022-29885)
CVE-2022-29885
-
High
Drupal Reliance on Cookies without Validation and Integrity Checking Vulnerability (CVE-2022-29248)
CVE-2022-29248
CWE-565
High
Envoy Proxy Reachable Assertion Vulnerability (CVE-2022-29228)
CVE-2022-29228
CWE-617
High
Envoy Proxy Use After Free Vulnerability (CVE-2022-29227)
CVE-2022-29227
CWE-416
High
Envoy Proxy Improper Handling of Highly Compressed Data (Data Amplification) Vulnerability (CVE-2022-29225)
CVE-2022-29225
CWE-409
High
Grafana URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-29170)
CVE-2022-29170
CWE-601
High
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-44967)
CVE-2021-44967
CWE-434
High
Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-44759)
CVE-2021-44759
CWE-287
High
XWiki Improper Authentication Vulnerability (CVE-2022-36092)
CVE-2022-36092
CWE-287
High
WebLogic CVE-2021-35620 Vulnerability (CVE-2021-35620)
CVE-2021-35620
-
High
MediaWiki Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-36125)
CVE-2021-36125
CWE-835
High
Magento Improper Access Control Vulnerability (CVE-2021-36036)
CVE-2021-36036
CWE-284
High
Magento Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2021-36023)
CVE-2021-36023
CWE-138
High
Magento CVE-2021-36021 Vulnerability (CVE-2021-36021)
CVE-2021-36021
-
High
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2021-35940)
CVE-2021-35940
CWE-125
High
Oracle HTTP Server CVE-2021-35666 Vulnerability (CVE-2021-35666)
CVE-2021-35666
-
High
MySQL CVE-2021-35610 Vulnerability (CVE-2021-35610)
CVE-2021-35610
-
High
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2021-36160)
CVE-2021-36160
CWE-125
High
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35413)
CVE-2021-35413
CWE-707
High
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-35197)
CVE-2021-35197
CWE-668
High
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-34798)
CVE-2021-34798
CWE-476
High
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2021-34520)
CVE-2021-34520
CWE-502
High
SharePoint CVE-2021-34468 Vulnerability (CVE-2021-34468)
CVE-2021-34468
-
High
SharePoint CVE-2021-34467 Vulnerability (CVE-2021-34467)
CVE-2021-34467
-
High
MediaWiki Incorrect Authorization Vulnerability (CVE-2021-36132)
CVE-2021-36132
CWE-863
High
Moodle Uncontrolled Recursion Vulnerability (CVE-2021-36395)
CVE-2021-36395
CWE-674
High
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33926)
CVE-2021-33926
CWE-918
High
Contao Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-37626)
CVE-2021-37626
CWE-94
High
Atlassian Confluence Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2021-39114)
CVE-2021-39114
CWE-138
High
Atlassian Jira Insufficient Session Expiration Vulnerability (CVE-2021-39113)
CVE-2021-39113
CWE-613
High
Liferay DXP CVE-2021-38266 Vulnerability (CVE-2021-38266)
CVE-2021-38266
-
High
Liferay Portal CVE-2021-38266 Vulnerability (CVE-2021-38266)
CVE-2021-38266
-
High
Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-38161)
CVE-2021-38161
CWE-287
High
Contao Improper Privilege Management Vulnerability (CVE-2021-37627)
CVE-2021-37627
CWE-269
High
Dolibarr Incorrect Authorization Vulnerability (CVE-2021-37517)
CVE-2021-37517
CWE-863
High
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-36396)
CVE-2021-36396
CWE-918
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37150)
CVE-2021-37150
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37149)
CVE-2021-37149
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37148)
CVE-2021-37148
CWE-20
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37147)
CVE-2021-37147
CWE-20
High
Sqlite CVE-2021-36690 Vulnerability (CVE-2021-36690)
CVE-2021-36690
-
High
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-36625)
CVE-2021-36625
CWE-138
High
Seo Panel Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-34117)
CVE-2021-34117
CWE-138
High
Ruby Interpretation Conflict Vulnerability (CVE-2021-33621)
CVE-2021-33621
CWE-436
High
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-39124)
CVE-2021-39124
CWE-352
High
Jboss EAP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2021-32027)
CVE-2021-32027
CWE-119
High
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-32565)
CVE-2021-32565
CWE-444
High
Moodle Uncontrolled Resource Consumption Vulnerability (CVE-2021-32476)
CVE-2021-32476
CWE-400
High
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-32474)
CVE-2021-32474
CWE-138
High
Ruby Inadequate Encryption Strength Vulnerability (CVE-2021-32066)
CVE-2021-32066
CWE-326
High
MongoDb Out-of-bounds Write Vulnerability (CVE-2021-32040)
CVE-2021-32040
CWE-787
High
MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-32036)
CVE-2021-32036
CWE-770
High
PostgreSQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2021-32027)
CVE-2021-32027
CWE-119
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32567)
CVE-2021-32567
CWE-20
High
SharePoint CVE-2021-31964 Vulnerability (CVE-2021-31964)
CVE-2021-31964
-
High
SharePoint CVE-2021-31963 Vulnerability (CVE-2021-31963)
CVE-2021-31963
-
High
SharePoint Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-31950)
CVE-2021-31950
CWE-918
High
SharePoint CVE-2021-31948 Vulnerability (CVE-2021-31948)
CVE-2021-31948
-
High
Chamilo Improper Input Validation Vulnerability (CVE-2021-31933)
CVE-2021-31933
CWE-20
High
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-31618)
CVE-2021-31618
CWE-476
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32566)
CVE-2021-32566
CWE-20
High
Zope Web Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633)
CVE-2021-32633
CWE-22
High
Django Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33571)
CVE-2021-33571
CWE-918
High
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-33203)
CVE-2021-33203
CWE-22
High
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33511)
CVE-2021-33511
CWE-918
High
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-33338)
CVE-2021-33338
CWE-352
High
Liferay Portal Incorrect Authorization Vulnerability (CVE-2021-33335)
CVE-2021-33335
CWE-863
High
Liferay Portal Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33323)
CVE-2021-33323
CWE-312
High
Liferay Portal Insufficient Session Expiration Vulnerability (CVE-2021-33322)
CVE-2021-33322
CWE-613
High
Liferay Portal Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-33321)
CVE-2021-33321
CWE-640
High
Apache HTTP Server Other Vulnerability (CVE-2021-33193)
CVE-2021-33193
-
High
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-32633)
CVE-2021-32633
CWE-22
High
Zope Web Application Server Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2021-32811)
CVE-2021-32811
CWE-915
High
Envoy Proxy Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2021-32781)
CVE-2021-32781
CWE-119
High
«
1
...
53
54
55
...
297
»
