Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Missing Update

This page lists 23101 vulnerabilities in this category.

Critical: 1474 High: 12458 Medium: 8395 Low: 770 Information: 4
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin Our Team Showcase Cross-Site Request Forgery (1.2)
CVE-2014-9523
CWE-352
High
WordPress Plugin O2Tweet Cross-Site Request Forgery (0.0.4)
CVE-2014-9338
CWE-352
High
WordPress Plugin mywebcounter Cross-Site Scripting (1.1)
-
CWE-79
High
WordPress Plugin MP3-jPlayer Multiple Cross-Site Scripting Vulnerabilities (1.8.11)
-
CWE-79
High
WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.3.4)
-
CWE-79
High
WordPress Plugin Mikiurl WordPress Eklentisi Cross-Site Request Forgery (2.0)
CVE-2014-9337
CWE-352
High
WordPress Plugin mb.miniAudioPlayer-an HTML5 audio player for your mp3 files Multiple Vulnerabilities (1.6.0)
-
CWE-79
High
WordPress Plugin Manage Calameo Publications by Athlon Cross-Site Scripting (1.1.0)
-
CWE-79
High
WordPress Plugin Lightbox Photo Gallery Cross-Site Request Forgery (1.0)
CVE-2014-9441
CWE-352
High
WordPress Plugin Keyword Strategy Internal Links Multiple Cross-Site Scripting Vulnerabilities (2.0)
CVE-2014-4537
CWE-79
High
WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Security Bypass (2.0.13)
CVE-2014-8802
CWE-264
High
MySQL CVE-2021-2144 Vulnerability (CVE-2021-2144)
CVE-2021-2144
-
High
WordPress Plugin Verification Code for Comments Multiple Cross-Site Scripting Vulnerabilities (2.1.0)
CVE-2014-4565
CWE-79
High
WordPress Plugin Sliding Social Icons Cross-Site Request Forgery (1.61)
CVE-2014-9437
CWE-352
High
WordPress Plugin twitterDash Cross-Site Request Forgery (2.1)
CVE-2014-9368
CWE-352
High
WordPress Plugin Twitter LiveBlog Cross-Site Request Forgery (1.1.2)
CVE-2014-9398
CWE-352
High
WordPress Plugin TweetScribe Cross-Site Request Forgery (1.1)
CVE-2014-9399
CWE-352
High
WordPress Plugin Toolset Types-Custom Post Types, Custom Fields and Taxonomies PHP Object Injection (1.5.7)
-
CWE-915
High
WordPress Plugin Tom M8te Directory Traversal (1.5.3)
CVE-2014-5187
CWE-22
High
WordPress Plugin Timed Popup Cross-Site Request Forgery (1.3)
CVE-2014-9525
CWE-352
High
WordPress Plugin SS Downloads Multiple Cross-Site Scripting Vulnerabilities (1.4.4.1)
CVE-2014-4554
CWE-79
High
WordPress Plugin SPNbabble Cross-Site Request Forgery (1.4.1)
CVE-2014-9339
CWE-352
High
WordPress Plugin Social Connect Cross-Site Scripting (1.0.4)
CVE-2014-4551
CWE-79
High
WordPress Plugin Slimstat Analytics Cross-Site Scripting (3.9.1)
CVE-2015-1204
CWE-79
High
WordPress Plugin Sliding Recent Posts Cross-Site Request Forgery (1.0)
-
CWE-352
High
WordPress Plugin Ruven Toolkit Cross-Site Scripting (1.1)
CVE-2014-4548
CWE-79
High
WordPress Plugin Simplelife Cross-Site Request Forgery (1.2)
CVE-2014-9395
CWE-352
High
WordPress Plugin SimpleFlickr Cross-Site Request Forgery (3.0.3)
CVE-2014-9396
CWE-352
High
WordPress Plugin Simple Sticky Footer Cross-Site Request Forgery (1.3.2)
CVE-2014-9454
CWE-352
High
WordPress Plugin BigDoor Quick Gamification for WordPress Cross-Site Scripting (1.0.5)
-
CWE-79
High
WordPress Plugin Shopping Cart & eCommerce Store Information Disclosure (2.0.5)
CVE-2014-4942
CWE-200
High
WordPress Plugin Shopping Cart & eCommerce Store Arbitrary File Upload (3.0.8)
CVE-2014-9308
CWE-434
High
WordPress Plugin Shariff for WordPress Cross-Site Scripting (1.0.7)
-
CWE-79
High
WordPress Plugin SEO Friendly Images Cross-Site Scripting (3.0.4)
-
CWE-79
High
WebLogic CVE-2021-2109 Vulnerability (CVE-2021-2109)
CVE-2021-2109
-
High
WordPress Plugin S3 Video Cross-Site Scripting (0.982)
CVE-2013-7279
CWE-79
High
Ruby Improper Restriction of XML External Entity Reference Vulnerability (CVE-2021-28965)
CVE-2021-28965
CWE-611
High
Envoy Proxy NULL Pointer Dereference Vulnerability (CVE-2021-28683)
CVE-2021-28683
CWE-476
High
WordPress Plugin Pay Per Media Player Multiple Cross-Site Scripting Vulnerabilities (1.24)
CVE-2014-4543
CWE-79
High
WordPress Plugin Flog Cross-Site Scripting (0.1)
CVE-2014-4530
CWE-79
High
WordPress Plugin HDW Player (Video Player & Video Gallery) SQL Injection (2.4.2)
CVE-2014-5180
CWE-89
High
WordPress Plugin Gravity Forms Arbitrary File Upload (1.8.19)
-
CWE-434
High
WordPress Plugin Google Doc Embedder Cross-Site Scripting (2.5.18)
CVE-2015-1879
CWE-79
High
WordPress Plugin Gmedia Photo Gallery Cross-Site Scripting (0.9.3)
-
CWE-79
High
WordPress Plugin Global Flash Galleries Cross-Site Scripting (0.13.4)
-
CWE-79
High
WordPress Plugin GEO Redirector Cross-Site Scripting (1.0.1)
CVE-2014-4533
CWE-79
High
WordPress Plugin GdeSlon Affiliate Shop Open Redirect (2.0)
-
CWE-601
High
WordPress Plugin GarageSale Cross-Site Scripting (1.2.2)
CVE-2014-4532
CWE-79
High
WordPress Plugin Game tabs Cross-Site Scripting (0.4.0)
CVE-2014-4531
CWE-79
High
WordPress Plugin Flash Photo Gallery Cross-Site Scripting (0.7)
CVE-2014-4529
CWE-79
High
WordPress Plugin HTML5 jQuery Audio Player Multiple Cross-Site Scripting Vulnerabilities (2.3)
-
CWE-79
High
SharePoint CVE-2021-26418 Vulnerability (CVE-2021-26418)
CVE-2021-26418
-
High
SharePoint CVE-2021-26420 Vulnerability (CVE-2021-26420)
CVE-2021-26420
-
High
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2021-26690)
CVE-2021-26690
CWE-476
High
WordPress Plugin FancyBox for WordPress Security Bypass (3.0.2)
CVE-2015-1494
CWE-264
High
WordPress Plugin FancyBox for WordPress Cross-Site Scripting (3.0.2)
-
CWE-79
High
WordPress Plugin Facebook Promotion Generator for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.3.4)
CVE-2014-4528
CWE-79
High
WordPress Plugin EnvialoSimple:Email Marketing y Newsletters Multiple Cross-Site Scripting Vulnerabilities (1.97)
CVE-2014-4527
CWE-79
High
WordPress Plugin Encrypted Blog Multiple Vulnerabilities (0.0.6.2)
-
CWE-601
High
Beego Framework Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-27116)
CVE-2021-27116
CWE-59
High
Beego Framework Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-27117)
CVE-2021-27117
CWE-59
High
WordPress Plugin Hot Files:File Sharing and Download Manager Cross-Site Scripting (1.0.0)
CVE-2014-4588
CWE-79
High
WordPress Plugin HTML5 Lyrics Karaoke Player Cross-Site Scripting (1.06)
-
CWE-79
High
WordPress Plugin Efence Multiple Cross-Site Scripting Vulnerabilities (1.3.2)
CVE-2014-4526
CWE-79
High
WordPress Plugin Mobile Domain Multiple Vulnerabilities (1.5.2)
CVE-2015-1581
CWE-352
High
WordPress Plugin Ooorl Cross-Site Scripting (1.0.0)
CVE-2014-4542
CWE-79
High
WordPress Plugin OMFG Mobile Pro Cross-Site Scripting (1.1.26)
CVE-2014-4541
CWE-79
High
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-25122)
CVE-2021-25122
CWE-200
High
WordPress Plugin Oleggo LiveStream Cross-Site Scripting (0.2.6)
CVE-2014-4540
CWE-79
High
Apache Tomcat Deserialization of Untrusted Data Vulnerability (CVE-2021-25329)
CVE-2021-25329
CWE-502
High
WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Multiple Cross-Site Scripting Vulnerabilities (2.8.8)
CVE-2015-2220
CWE-79
High
Dolibarr Improper Authentication Vulnerability (CVE-2021-25956)
CVE-2021-25956
CWE-287
High
Dolibarr Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-25957)
CVE-2021-25957
CWE-640
High
WordPress Plugin Movies Cross-Site Scripting (0.6)
CVE-2014-4539
CWE-79
High
WordPress Plugin MobileChief-Mobile Site Builder Cross-Site Scripting (1.5.7)
-
CWE-79
High