🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Missing Update
This page lists
23101 vulnerabilities
in this category.
Critical: 1474
High: 12458
Medium: 8395
Low: 770
Information: 4
Vulnerability Name
CVE
CWE
Severity
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-2141)
CVE-2016-2141
CWE-264
Critical
GeoServer CVE-2023-35042 Vulnerability (CVE-2023-35042)
CVE-2023-35042
-
Critical
Moodle Improper Input Validation Vulnerability (CVE-2006-4936)
CVE-2006-4936
CWE-20
Critical
Moodle Improper Input Validation Vulnerability (CVE-2006-4935)
CVE-2006-4935
CWE-20
Critical
PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2006-4812)
CVE-2006-4812
CWE-94
Critical
OpenSSL Integer Overflow or Wraparound Vulnerability (CVE-2016-2177)
CVE-2016-2177
CWE-190
Critical
PHP Other Vulnerability (CVE-2006-4485)
CVE-2006-4485
-
Critical
OpenSSL Out-of-bounds Write Vulnerability (CVE-2016-2182)
CVE-2016-2182
CWE-787
Critical
PHP Other Vulnerability (CVE-2006-4483)
CVE-2006-4483
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2006-4482)
CVE-2006-4482
CWE-119
Critical
MySQL Deserialization of Untrusted Data Vulnerability (CVE-2019-14893)
CVE-2019-14893
CWE-502
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14893)
CVE-2019-14893
CWE-502
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14540)
CVE-2019-14540
CWE-502
Critical
MySQL Deserialization of Untrusted Data Vulnerability (CVE-2019-14540)
CVE-2019-14540
CWE-502
Critical
PHP Other Vulnerability (CVE-2016-4540)
CVE-2016-4540
-
Critical
Squid Out-of-bounds Write Vulnerability (CVE-2019-12519)
CVE-2019-12519
CWE-787
Critical
Chamilo Improper Handling of Case Sensitivity Vulnerability (CVE-2023-3545)
CVE-2023-3545
CWE-178
Critical
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-3550)
CVE-2023-3550
CWE-707
Critical
OpenVPN AS Other Vulnerability (CVE-2006-1629)
CVE-2006-1629
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2023-3824)
CVE-2023-3824
CWE-119
Critical
Joomla Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-12765)
CVE-2019-12765
CWE-1236
Critical
TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2019-12747)
CVE-2019-12747
CWE-502
Critical
Squid Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2019-12526)
CVE-2019-12526
CWE-120
Critical
Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-4010)
CVE-2016-4010
CWE-138
Critical
Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2019-12525)
CVE-2019-12525
CWE-119
Critical
Squid Missing Authentication for Critical Function Vulnerability (CVE-2019-12524)
CVE-2019-12524
CWE-306
Critical
Squid CVE-2019-12523 Vulnerability (CVE-2019-12523)
CVE-2019-12523
-
Critical
Opencart Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2023-40834)
CVE-2023-40834
CWE-307
Critical
Joomla Other Vulnerability (CVE-2006-1047)
CVE-2006-1047
-
Critical
PHP Other Vulnerability (CVE-2006-1017)
CVE-2006-1017
-
Critical
Oracle Database Server CVE-2006-1866 Vulnerability (CVE-2006-1866)
CVE-2006-1866
-
Critical
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-41892)
CVE-2023-41892
CWE-94
Critical
MediaWiki Missing Authentication for Critical Function Vulnerability (CVE-2019-12468)
CVE-2019-12468
CWE-306
Critical
PHP Improper Input Validation Vulnerability (CVE-2016-4071)
CVE-2016-4071
CWE-20
Critical
PHP Improper Input Validation Vulnerability (CVE-2016-4072)
CVE-2016-4072
CWE-20
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4073)
CVE-2016-4073
CWE-119
Critical
ZenCart Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-0697)
CVE-2006-0697
CWE-264
Critical
PHP Numeric Errors Vulnerability (CVE-2016-4344)
CVE-2016-4344
-
Critical
PHP Numeric Errors Vulnerability (CVE-2016-4345)
CVE-2016-4345
-
Critical
PHP Numeric Errors Vulnerability (CVE-2016-4346)
CVE-2016-4346
-
Critical
PHP Use After Free Vulnerability (CVE-2016-4473)
CVE-2016-4473
CWE-416
Critical
PHP Improper Input Validation Vulnerability (CVE-2016-4537)
CVE-2016-4537
CWE-20
Critical
PHP Improper Input Validation Vulnerability (CVE-2016-4538)
CVE-2016-4538
CWE-20
Critical
Claroline Other Vulnerability (CVE-2006-0411)
CVE-2006-0411
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-4539)
CVE-2016-4539
CWE-119
Critical
Chamilo Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-3533)
CVE-2023-3533
CWE-22
Critical
Oracle Database Server Other Vulnerability (CVE-2006-1867)
CVE-2006-1867
-
Critical
YOURLS Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2019-14537)
CVE-2019-14537
CWE-843
Critical
PrestaShop CVE-2023-39529 Vulnerability (CVE-2023-39529)
CVE-2023-39529
-
Critical
PHP Other Vulnerability (CVE-2006-3017)
CVE-2006-3017
-
Critical
Jboss EAP Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2019-14379)
CVE-2019-14379
CWE-915
Critical
Axway Secure Transport Improper Restriction of XML External Entity Reference Vulnerability (CVE-2019-14277)
CVE-2019-14277
CWE-611
Critical
Django Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-14234)
CVE-2019-14234
CWE-138
Critical
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-38888)
CVE-2023-38888
CWE-707
Critical
WebLogic CVE-2016-3499 Vulnerability (CVE-2016-3499)
CVE-2016-3499
-
Critical
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-13364)
CVE-2019-13364
CWE-707
Critical
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-13363)
CVE-2019-13363
CWE-352
Critical
WebLogic CVE-2016-3510 Vulnerability (CVE-2016-3510)
CVE-2016-3510
-
Critical
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-39524)
CVE-2023-39524
CWE-138
Critical
PrestaShop Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-39525)
CVE-2023-39525
CWE-22
Critical
PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-39526)
CVE-2023-39526
CWE-138
Critical
WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-13292)
CVE-2019-13292
CWE-138
Critical
WebLogic CVE-2016-3551 Vulnerability (CVE-2016-3551)
CVE-2016-3551
-
Critical
PrestaShop Improper Input Validation Vulnerability (CVE-2023-39530)
CVE-2023-39530
CWE-20
Critical
Oracle Database Server Other Vulnerability (CVE-2006-1869)
CVE-2006-1869
-
Critical
PHP Use After Free Vulnerability (CVE-2019-13224)
CVE-2019-13224
CWE-416
Critical
WebLogic CVE-2016-3586 Vulnerability (CVE-2016-3586)
CVE-2016-3586
-
Critical
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-13082)
CVE-2019-13082
CWE-434
Critical
GlassFish CVE-2016-3607 Vulnerability (CVE-2016-3607)
CVE-2016-3607
-
Critical
Grafana Authentication Bypass by Spoofing Vulnerability (CVE-2023-3128)
CVE-2023-3128
CWE-290
Critical
Python Out-of-bounds Write Vulnerability (CVE-2019-12900)
CVE-2019-12900
CWE-787
Critical
Oracle Database Server Other Vulnerability (CVE-2006-1884)
CVE-2006-1884
-
Critical
Oracle Application Server Other Vulnerability (CVE-2006-1884)
CVE-2006-1884
-
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-3690)
CVE-2016-3690
CWE-502
Critical
Oracle Database Server CVE-2006-1876 Vulnerability (CVE-2006-1876)
CVE-2006-1876
-
Critical
«
1
...
6
7
8
...
309
»
