Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Missing Update

This page lists 22224 vulnerabilities in this category.

Critical: 1394 High: 12186 Medium: 7891 Low: 749 Information: 4
Vulnerability Name
CVE
CWE
Severity
Microsoft SQL Server CVE-2023-29349 Vulnerability (CVE-2023-29349)
CVE-2023-29349
-
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29214)
CVE-2023-29214
CWE-94
High
Apache Traffic Server CVE-2023-33933 Vulnerability (CVE-2023-33933)
CVE-2023-33933
-
High
Liferay DXP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-33945)
CVE-2023-33945
CWE-138
High
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-27522)
CVE-2023-27522
-
High
Apache Traffic Server Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-38522)
CVE-2023-38522
-
High
PrestaShop Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-39528)
CVE-2023-39528
CWE-22
High
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2023-39456)
CVE-2023-39456
CWE-20
High
PostgreSQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-39417)
CVE-2023-39417
CWE-138
High
Dolibarr Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-38887)
CVE-2023-38887
CWE-434
High
Dolibarr CVE-2023-38886 Vulnerability (CVE-2023-38886)
CVE-2023-38886
-
High
Apache HTTP Server Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-38709)
CVE-2023-38709
CWE-1284
High
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2023-38371)
CVE-2023-38371
CWE-327
High
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-3171)
CVE-2023-3171
CWE-770
High
Microsoft SQL Server CVE-2023-38169 Vulnerability (CVE-2023-38169)
CVE-2023-38169
-
High
CubeCart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-38130)
CVE-2023-38130
CWE-352
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-37914)
CVE-2023-37914
CWE-94
High
XWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-37913)
CVE-2023-37913
CWE-22
High
XWiki Missing Authorization Vulnerability (CVE-2023-37910)
CVE-2023-37910
CWE-862
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-37909)
CVE-2023-37909
CWE-94
High
MathJax Inefficient Regular Expression Complexity Vulnerability (CVE-2023-39663)
CVE-2023-39663
CWE-1333
High
Undertow CVE-2023-3223 Vulnerability (CVE-2023-3223)
CVE-2023-3223
-
High
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-37270)
CVE-2023-37270
CWE-138
High
Django Improper Validation of Specified Quantity in Input Vulnerability (CVE-2023-41164)
CVE-2023-41164
CWE-1284
High
Jenkins Incorrect Default Permissions Vulnerability (CVE-2023-43496)
CVE-2023-43496
CWE-276
High
Artifactory CVE-2023-42661 Vulnerability (CVE-2023-42661)
CVE-2023-42661
-
High
Artifactory Improper Handling of Exceptional Conditions Vulnerability (CVE-2023-42509)
CVE-2023-42509
CWE-755
High
GeoServer Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-41877)
CVE-2023-41877
CWE-22
High
Apache Traffic Server CVE-2023-41752 Vulnerability (CVE-2023-41752)
CVE-2023-41752
-
High
MyBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-41362)
CVE-2023-41362
CWE-94
High
Python Untrusted Search Path Vulnerability (CVE-2023-41105)
CVE-2023-41105
CWE-426
High
Jboss EAP CVE-2023-3223 Vulnerability (CVE-2023-3223)
CVE-2023-3223
-
High
Zope Web Application Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2023-41050)
CVE-2023-41050
CWE-200
High
Joomla CVE-2023-40626 Vulnerability (CVE-2023-40626)
CVE-2023-40626
-
High
XWiki CVE-2023-40573 Vulnerability (CVE-2023-40573)
CVE-2023-40573
-
High
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-40572)
CVE-2023-40572
CWE-352
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-40177)
CVE-2023-40177
CWE-94
High
Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-40035)
CVE-2023-40035
CWE-138
High
PHP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2023-3823)
CVE-2023-3823
CWE-611
High
XWiki Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') Vulnerability (CVE-2023-37462)
CVE-2023-37462
CWE-707
High
SharePoint CVE-2023-36892 Vulnerability (CVE-2023-36892)
CVE-2023-36892
-
High
Liferay Portal Missing Authorization Vulnerability (CVE-2023-33948)
CVE-2023-33948
CWE-862
High
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-35030)
CVE-2023-35030
CWE-352
High
XWiki CVE-2023-35166 Vulnerability (CVE-2023-35166)
CVE-2023-35166
-
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-35152)
CVE-2023-35152
CWE-94
High
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-35151)
CVE-2023-35151
CWE-668
High
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-35150)
CVE-2023-35150
CWE-94
High
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-35141)
CVE-2023-35141
CWE-352
High
Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-35133)
CVE-2023-35133
CWE-918
High
Apache Tomcat CVE-2023-34981 Vulnerability (CVE-2023-34981)
CVE-2023-34981
-
High
SugarCRM CVE-2023-35809 Vulnerability (CVE-2023-35809)
CVE-2023-35809
-
High
Chamilo Other Vulnerability (CVE-2023-34962)
CVE-2023-34962
-
High
XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-34467)
CVE-2023-34467
CWE-668
High
XWiki Improper Privilege Management Vulnerability (CVE-2023-34465)
CVE-2023-34465
CWE-269
High
Liferay Portal Inefficient Regular Expression Complexity Vulnerability (CVE-2023-33950)
CVE-2023-33950
CWE-1333
High
Liferay DXP Insecure Default Initialization of Resource Vulnerability (CVE-2023-33949)
CVE-2023-33949
CWE-1188
High
Liferay Portal Insecure Default Initialization of Resource Vulnerability (CVE-2023-33949)
CVE-2023-33949
CWE-1188
High
SugarCRM Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-35808)
CVE-2023-35808
CWE-434
High
SugarCRM Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-35810)
CVE-2023-35810
CWE-138
High
SharePoint CVE-2023-36891 Vulnerability (CVE-2023-36891)
CVE-2023-36891
-
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-36470)
CVE-2023-36470
CWE-138
High
SharePoint CVE-2023-36764 Vulnerability (CVE-2023-36764)
CVE-2023-36764
-
High
SharePoint CVE-2023-36762 Vulnerability (CVE-2023-36762)
CVE-2023-36762
-
High
Microsoft SQL Server CVE-2023-36730 Vulnerability (CVE-2023-36730)
CVE-2023-36730
-
High
Python Uncontrolled Recursion Vulnerability (CVE-2023-36632)
CVE-2023-36632
CWE-674
High
Jetty Integer Overflow or Wraparound Vulnerability (CVE-2023-36478)
CVE-2023-36478
CWE-190
High
Jenkins Integer Overflow or Wraparound Vulnerability (CVE-2023-36478)
CVE-2023-36478
CWE-190
High
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-36469)
CVE-2023-36469
CWE-138
High
SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-35811)
CVE-2023-35811
CWE-138
High
XWiki Incomplete Cleanup Vulnerability (CVE-2023-36468)
CVE-2023-36468
CWE-459
High
Microsoft SQL Server CVE-2023-36420 Vulnerability (CVE-2023-36420)
CVE-2023-36420
-
High
Microsoft SQL Server CVE-2023-36417 Vulnerability (CVE-2023-36417)
CVE-2023-36417
-
High
Craft CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-36260)
CVE-2023-36260
CWE-138
High
Django Inefficient Regular Expression Complexity Vulnerability (CVE-2023-36053)
CVE-2023-36053
CWE-1333
High
Envoy Proxy Incomplete Cleanup Vulnerability (CVE-2023-35945)
CVE-2023-35945
CWE-459
High