🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ XSS
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
XSS
This page lists
3367 vulnerabilities
in this category.
Vulnerability Name
CVE
CWE
Severity
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.18)
CVE-2014-7982
CWE-79
High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.14)
-
CWE-79
High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.3)
CVE-2012-1612
CWE-79
High
Joomla! Core 3.0.0 Cross-Site Scripting (3.0.0)
-
CWE-79
High
Joomla! Core 3.0.x Cross-Site Scripting (3.0.0 - 3.0.3)
CVE-2013-3267
CWE-79
High
Joomla! Core 3.2.x Cross-Site Scripting (3.2.0 - 3.2.4)
CVE-2014-6631
CWE-79
High
Joomla! Core 3.3.x Cross-Site Scripting (3.3.0 - 3.3.3)
CVE-2014-6631
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.1.2 - 3.2.2)
CVE-2014-7983
CWE-79
High
Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.2)
-
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.2.2)
CVE-2014-7982
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.1.5)
-
CWE-79
High
Joomla! Core Cross-Site Scripting (1.6.0 - 3.6.0)
-
CWE-79
High
Joomla! Core Cross-Site Scripting (1.5.0 - 3.7.3)
CVE-2017-11612
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.8.3)
CVE-2018-6380
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.1.2 - 3.8.7)
CVE-2018-11328
CWE-79
High
Joomla! Core 3.x.x Multiple Cross-Site Scripting Vulnerabilities (3.0.0 - 3.8.7)
CVE-2018-11326
CWE-79
High
Joomla! Core Cross-Site Scripting (1.6.0 - 3.8.8)
CVE-2018-12711
CWE-79
High
Joomla! Core Cross-Site Scripting (1.5.0 - 3.8.3)
CVE-2018-6379
CWE-79
High
Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 3.8.7)
CVE-2018-6378
CWE-79
High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9)
CVE-2013-3059
CWE-79
High
Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.3)
CVE-2012-0820
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.11)
CVE-2019-16725
CWE-79
High
Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.15)
CVE-2011-0005
CWE-79
High
Drupal Core 9.1.x Cross-Site Scripting (9.1.0 - 9.1.11)
-
CWE-79
High
Drupal Core 9.2.x Cross-Site Scripting (9.2.0 - 9.2.10)
CVE-2021-41184
CWE-79
High
Drupal Core 9.2.x Cross-Site Scripting (9.2.0 - 9.2.3)
-
CWE-79
High
Drupal Core 9.2.x Cross-Site Scripting (9.2.0 - 9.2.8)
-
CWE-79
High
Drupal Core 9.3.x Cross-Site Scripting (9.3.0 - 9.3.18)
CVE-2022-25276
CWE-79
High
Drupal Core 9.3.x Cross-Site Scripting (9.3.0 - 9.3.2)
CVE-2021-41184
CWE-79
High
Drupal Core 9.4.x Cross-Site Scripting (9.4.0 - 9.4.2)
CVE-2022-25276
CWE-79
High
Drupal Core Cross-Site Scripting (8.0.0 - 9.1.15)
CVE-2021-41184
CWE-79
High
Drupal Core Cross-Site Scripting (8.0.0 - 9.2.21)
CVE-2022-25276
CWE-79
High
Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.11)
CVE-2006-6832
CWE-79
High
Joomla! Core 1.0.x Multiple Cross-Site Scripting Vulnerabilities (1.0.0 - 1.0.10)
CVE-2006-4474
CWE-79
High
Joomla! Core 1.7.0 Cross-Site Scripting (1.7.0)
CVE-2011-3595
CWE-79
High
Joomla! Core 1.0.x Multiple Cross-Site Scripting Vulnerabilities (1.0.0 - 1.0.12)
CVE-2007-5577
CWE-79
High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.7)
CVE-2008-6299
CWE-79
High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.11)
CVE-2011-4910
CWE-79
High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10)
CVE-2009-1938
CWE-79
High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.9)
CVE-2009-1279
CWE-79
High
Joomla! Core 1.5.x Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 1.5.20)
CVE-2010-3712
CWE-79
High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6)
CVE-2012-0820
CWE-79
High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.5)
CVE-2011-2710
CWE-79
High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.3)
CVE-2011-4332
CWE-79
High
Joomla! Core 1.6.x Multiple Cross-Site Scripting Vulnerabilities (1.6.0 - 1.6.3)
CVE-2011-2509
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.2.0 - 3.9.3)
CVE-2019-9712
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.6.0 - 3.9.6)
CVE-2019-12766
CWE-79
High
Drupal Core 9.0.x Cross-Site Scripting (9.0.0 - 9.0.14)
-
CWE-79
High
WordPress 3.0.3 KSES Library Cross-Site Scripting Vulnerability (0.6.2 - 3.0.3)
CVE-2010-4536
CWE-79
High
WordPress 2.2 Cross-Site Scripting Vulnerability (2.2)
CVE-2007-3238
CWE-79
High
WordPress 2.3 Cross-Site Scripting Vulnerability (2.3)
CVE-2007-5710
CWE-79
High
WordPress 'templates.php' Cross-Site Scripting Vulnerability (0.6.2 - 2.1)
CVE-2007-1049
CWE-79
High
WordPress 'wp-register.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1)
CVE-2007-5106
CWE-79
High
WordPress 2.6.3 Cross-Site Scripting Vulnerability (0.6.2 - 2.6.3)
CVE-2008-5278
CWE-79
High
WordPress MU 'wp-admin/wpmu-blogs.php' Multiple Cross-Site Scripting Vulnerabilities (1.0 - 2.5.1)
CVE-2008-4671
CWE-79
High
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0.11 - 2.3)
CVE-2008-0193
CWE-79
High
WordPress 'press-this.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.5.1)
CVE-2008-3233
CWE-79
High
WordPress 2.8.1 Comment Author URI Cross-Site Scripting Vulnerability (0.6.2 - 2.8.1)
CVE-2009-2851
CWE-79
High
WordPress MU 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability (1.0 - 2.6)
CVE-2009-1030
CWE-79
High
WordPress 3.3 Cross-Site Scripting Vulnerability (3.3)
CVE-2012-0287
CWE-79
High
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1)
CVE-2006-1796
CWE-79
High
WordPress 'swfupload.swf' Cross-Site Scripting Vulnerability (2.5 - 3.3.1)
CVE-2012-3414
CWE-79
High
WordPress 2.5 Cross-Site Scripting Vulnerability (2.5)
CVE-2008-2068
CWE-79
High
WordPress Cross-Site Scripting Vulnerability (3.0 - 3.6.1)
CVE-2014-9031
CWE-79
High
WordPress Cross-Site Scripting Vulnerability (0.70 - 4.1.1)
CVE-2015-3438
CWE-79
High
WordPress Cross-Site Scripting Vulnerability (3.9.3 - 4.2)
CVE-2015-3440
CWE-79
High
WordPress Cross-Site Scripting Vulnerability (3.9 - 4.1.1)
CVE-2015-3439
CWE-79
High
WordPress Multiple Cross-Site Scripting Vulnerabilities (4.1 - 4.2.1)
CVE-2015-8834
CWE-79
High
WordPress 3.8.x Cross-Site Scripting Vulnerability (3.8 - 3.8.11)
CVE-2016-1564
CWE-79
High
WordPress 3.8.x Same Origin Method Execution (SOME) Vulnerability (3.8 - 3.8.13)
CVE-2016-4566
CWE-79
High
WordPress 3.9.x Cross-Site Scripting Vulnerability (3.9 - 3.9.9)
CVE-2016-1564
CWE-79
High
WordPress 2.1.1 Cross-Site Scripting Vulnerability (2.1.1)
CVE-2007-1244
CWE-79
High
WordPress 'index.php' Cross-Site Scripting Vulnerability (1.5)
-
CWE-79
High
Joomla! Core 3.x.x Multiple Cross-Site Scripting Vulnerabilities (3.0.0 - 3.9.3)
CVE-2019-9714
CWE-79
High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.25)
CVE-2021-26030
CWE-79
High
«
1
...
28
29
30
...
45
»
