🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Missing Update
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Missing Update
This page lists
23101 vulnerabilities
in this category.
Critical: 1474
High: 12458
Medium: 8395
Low: 770
Information: 4
Vulnerability Name
CVE
CWE
Severity
WordPress 3.3.1 Multiple Vulnerabilities (2.0 - 3.3.1)
CVE-2012-3414
CWE-352
High
Django CVE-2024-24680 Vulnerability (CVE-2024-24680)
CVE-2024-24680
-
High
GibbonEdu Deserialization of Untrusted Data Vulnerability (CVE-2024-24725)
CVE-2024-24725
CWE-502
High
WordPress 3.0.1 Multiple Vulnerabilities (0.6.2 - 3.0.1)
CVE-2010-5296
CWE-264
High
WordPress 3.5 Multiple Vulnerabilities (1.5 - 3.5)
CVE-2013-0237
CWE-918
High
WordPress 2.8.5 Multiple Vulnerabilities (2.8 - 2.8.5)
CVE-2009-3891
CWE-94
High
WordPress 2.6.2 Remote Code Execution Vulnerability (0.70 - 2.6.2)
CVE-2008-4796
CWE-94
High
WordPress 2.5 Cross-Site Scripting Vulnerability (2.5)
CVE-2008-2068
CWE-79
High
Squid Uncontrolled Recursion Vulnerability (CVE-2024-25111)
CVE-2024-25111
CWE-674
High
WordPress 2.2.2 Multiple Vulnerabilities (2.2 - 2.2.2)
CVE-2008-2146
CWE-264
High
WordPress 2.2.1 Multiple Vulnerabilities (2.2.1)
CVE-2007-4154
CWE-601
High
WordPress 2.2 Multiple Vulnerabilities (2.2)
CVE-2007-3543
CWE-434
High
TYPO3 CVE-2024-25121 Vulnerability (CVE-2024-25121)
CVE-2024-25121
-
High
WordPress 2.1.2 Multiple Vulnerabilities (2.1 - 2.1.2)
CVE-2007-1897
CWE-264
High
WordPress 2.0.9 Multiple Vulnerabilities (2.0 - 2.0.9)
CVE-2007-1897
CWE-264
High
WordPress 'press-this.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.5.1)
CVE-2008-3233
CWE-79
High
WordPress MU 'wp-admin/wpmu-blogs.php' Multiple Cross-Site Scripting Vulnerabilities (1.0 - 2.5.1)
CVE-2008-4671
CWE-79
High
WordPress Cookie Data PHP Code Injection Vulnerability (1.5 - 1.5.1.3)
CVE-2005-2612
CWE-94
High
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26272)
CVE-2024-26272
CWE-352
High
WordPress 'paged' Parameter SQL Injection Vulnerability (2.0.2 - 2.0.5)
CVE-2006-3389
CWE-89
High
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1)
CVE-2006-1796
CWE-79
High
WordPress 'index.php' Cross-Site Scripting Vulnerability (1.5)
-
CWE-79
High
WordPress Comment Post Cross-Site Scripting Vulnerability (2.0)
CVE-2006-0733
CWE-79
High
WordPress 2.0.5 Invalid CSRF Token Cross-Site Scripting Vulnerability (0.6.2 - 2.0.5)
CVE-2007-0106
CWE-79
High
WordPress 2.0.5 Cross-Site Scripting Vulnerability (0.6.2 - 2.0.5)
CVE-2006-6808
CWE-79
High
WordPress 2.0.4 Multiple Security Vulnerabilities (2.0.4)
CVE-2006-6017
CWE-400
High
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26271)
CVE-2024-26271
CWE-352
High
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26271)
CVE-2024-26271
CWE-352
High
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26272)
CVE-2024-26272
CWE-352
High
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26273)
CVE-2024-26273
CWE-352
High
WordPress 2.0.5 Charset Decoding SQL Injection Vulnerability (0.6.2 - 2.0.5)
CVE-2007-0107
CWE-89
High
Liferay DXP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26273)
CVE-2024-26273
CWE-352
High
WordPress 2.0.3 Multiple Unspecified Security Vulnerabilities (2.0 - 2.0.3)
CVE-2006-4028
CWE-264
High
WordPress 2.0.2 Username Remote PHP Code Injection Vulnerability (0.6.2 - 2.0.2)
CVE-2006-2702
CWE-94
High
WordPress 2.0.1 Denial of Service Vulnerability (0.6.2 - 2.0.1)
-
CWE-400
High
WordPress 'wp-trackback.php' SQL Injection Vulnerability (1.5)
CVE-2005-1687
CWE-89
High
WordPress 'post.php' Cross-Site Scripting Vulnerability (1.5)
-
CWE-79
High
Joomla Other Vulnerability (CVE-2024-27187)
CVE-2024-27187
-
High
phpMyFAQ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-27299)
CVE-2024-27299
CWE-138
High
WordPress 'edit.php' Cross-Site Scripting Vulnerability (1.5)
-
CWE-79
High
Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-27316)
CVE-2024-27316
CWE-770
High
WordPress User-Agent SQL Injection Vulnerability (1.5.2)
CVE-2006-1012
CWE-89
High
WordPress 2.0.6 'Zend_Hash_Del_Key_Or_Index' SQL Injection Vulnerability (0.6.2 - 2.0.6)
CVE-2007-0233
CWE-89
High
Liferay Portal Improper Restriction of XML External Entity Reference Vulnerability (CVE-2024-25606)
CVE-2024-25606
CWE-611
High
Moodle Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-25978)
CVE-2024-25978
CWE-770
High
Liferay DXP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2024-25606)
CVE-2024-25606
CWE-611
High
Liferay DXP Use of Password Hash With Insufficient Computational Effort Vulnerability (CVE-2024-25607)
CVE-2024-25607
CWE-916
High
Liferay Portal Use of Password Hash With Insufficient Computational Effort Vulnerability (CVE-2024-25607)
CVE-2024-25607
CWE-916
High
WordPress 'get_edit_post_link()' and 'get_edit_comment_link()' Multiple Eavesdropping Vulnerabilities (0.6.2 - 2.6)
CVE-2008-3747
CWE-264
High
WordPress 2.6.3 Cross-Site Scripting Vulnerability (0.6.2 - 2.6.3)
CVE-2008-5278
CWE-79
High
WordPress 2.5 Cookie Integrity Protection Unauthorized Access Vulnerability (0.6.2 - 2.5)
CVE-2008-1930
CWE-287
High
WordPress 2.3.3 Directory Traversal Vulnerability (0.6.2 - 2.3.3)
CVE-2008-4769
CWE-22
High
WordPress 2.3.2 Post Edit Unauthorized Access Vulnerability (0.7 - 2.3.2)
CVE-2008-0664
CWE-264
High
WordPress 'wp-register.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1)
CVE-2007-5106
CWE-79
High
Squid Other Vulnerability (CVE-2024-25617)
CVE-2024-25617
-
High
WordPress 'wp-db.php' Character Set SQL Injection Vulnerability (2.0 - 2.3.1)
CVE-2007-6318
CWE-89
High
WordPress 2.1.1 Command Execution Backdoor Vulnerability (2.1.1)
CVE-2007-1277
CWE-94
High
WordPress 'templates.php' Cross-Site Scripting Vulnerability (0.6.2 - 2.1)
CVE-2007-1049
CWE-79
High
WordPress Pingback Source URI Denial of Service and Information Disclosure Vulnerabilities (0.6.2 - 2.1.3)
CVE-2007-0540
CWE-400
High
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-25982)
CVE-2024-25982
CWE-352
High
WordPress Cookies Security Bypass Weakness (1.5 - 2.3.1)
CVE-2007-6013
CWE-287
High
WordPress 'admin-ajax.php' SQL Injection Vulnerability (2.1.3)
CVE-2007-2821
CWE-89
High
Ruby on Rails Inefficient Regular Expression Complexity Vulnerability (CVE-2024-26142)
CVE-2024-26142
CWE-1333
High
WordPress 2.3.1 Unauthorized Post Access Vulnerability (2.3.1)
-
CWE-264
High
WordPress 2.3 Cross-Site Scripting Vulnerability (2.3)
CVE-2007-5710
CWE-79
High
WordPress 2.2 Cross-Site Scripting Vulnerability (2.2)
CVE-2007-3238
CWE-79
High
WordPress 2.1.1 Cross-Site Scripting Vulnerability (2.1.1)
CVE-2007-1244
CWE-79
High
e107 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-50939)
CVE-2022-50939
CWE-22
High
e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-50907)
CVE-2022-50907
CWE-434
High
WordPress Plugin Gallery by BestWebSoft Arbitrary File Disclosure (3.8.3)
-
CWE-538
High
WordPress Plugin WP HTML Sitemap Cross-Site Request Forgery (1.2)
CVE-2014-2675
CWE-352
High
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-33203)
CVE-2021-33203
CWE-22
High
WordPress Plugin WP REST API (WP API) Cross-Site Request Forgery (1.1)
-
CWE-352
High
Liferay Portal Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-33321)
CVE-2021-33321
CWE-640
High
Liferay Portal Insufficient Session Expiration Vulnerability (CVE-2021-33322)
CVE-2021-33322
CWE-613
High
«
1
...
75
76
77
...
309
»
