Web Application Vulnerabilities Index

This page lists X vulnerabilities classified as ISO27001-A.14.1.2 that can be detected by Invicti.

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Select Vulnerability
Vulnerability Name
Classification
Severity
Out-of-date Version (ProjectSend)
Out-of-date Version (ProjectSend)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Prototype JS)
Out-of-date Version (Prototype JS)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Python)
Out-of-date Version (Python)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Python WSGIserver)
Out-of-date Version (Python WSGIserver)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (qdPM)
Out-of-date Version (qdPM)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Question2Answer)
Out-of-date Version (Question2Answer)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Ramda)
Out-of-date Version (Ramda)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (React)
Out-of-date Version (React)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (RequireJS)
Out-of-date Version (RequireJS)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Resin Application Server)
Out-of-date Version (Resin Application Server)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Respond.js)
Out-of-date Version (Respond.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Restlet Framework)
Out-of-date Version (Restlet Framework)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Reveal.js)
Out-of-date Version (Reveal.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Revive Adserver)
Out-of-date Version (Revive Adserver)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Rickshaw)
Out-of-date Version (Rickshaw)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Riot.js)
Out-of-date Version (Riot.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (RoR)
Out-of-date Version (RoR)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Roundcube)
Out-of-date Version (Roundcube)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Ruby)
Out-of-date Version (Ruby)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (RubyGems)
Out-of-date Version (RubyGems)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Rukovoditel)
Out-of-date Version (Rukovoditel)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (ScrollReveal)
Out-of-date Version (ScrollReveal)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Select2)
Out-of-date Version (Select2)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Semantic UI)
Out-of-date Version (Semantic UI)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (SeoPanel)
Out-of-date Version (SeoPanel)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Serendipity)
Out-of-date Version (Serendipity)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (slick)
Out-of-date Version (slick)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Snap.svg)
Out-of-date Version (Snap.svg)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Sortable)
Out-of-date Version (Sortable)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (SQLite)
Out-of-date Version (SQLite)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
High
Out-of-date Version (Squid)
Out-of-date Version (Squid)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Swagger UI)
Out-of-date Version (Swagger UI)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (SweetAlert2)
Out-of-date Version (SweetAlert2)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (TCExam)
Out-of-date Version (TCExam)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Telerik Web UI)
Out-of-date Version (Telerik Web UI)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Three.js)
Out-of-date Version (Three.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (TinyMCE)
Out-of-date Version (TinyMCE)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Tomcat)
Out-of-date Version (Tomcat)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Tornado Web Server)
Out-of-date Version (Tornado Web Server)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Trac Software Project Management Tool)
Out-of-date Version (Trac Software Project Management Tool)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Tracy Debugging Tool)
Out-of-date Version (Tracy Debugging Tool)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (TwistedWeb HTTP Server)
Out-of-date Version (TwistedWeb HTTP Server)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (typeahead.js)
Out-of-date Version (typeahead.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Typo3)
Out-of-date Version (Typo3)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
WASC-13
, 
Information
Out-of-date Version (UAParser.js)
Out-of-date Version (UAParser.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Underscore.js)
Out-of-date Version (Underscore.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Undertow Web Server)
Out-of-date Version (Undertow Web Server)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Vanilla Forums)
Out-of-date Version (Vanilla Forums)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Video.js)
Out-of-date Version (Video.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Vtiger)
Out-of-date Version (Vtiger)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Vue.js)
Out-of-date Version (Vue.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (W3 Total Cache)
Out-of-date Version (W3 Total Cache)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (webERP)
Out-of-date Version (webERP)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (WeBid)
Out-of-date Version (WeBid)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (WebLogic)
Out-of-date Version (WebLogic)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Werkzeug Python WSGI Library)
Out-of-date Version (Werkzeug Python WSGI Library)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (WordPress)
Out-of-date Version (WordPress)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (XOOPS)
Out-of-date Version (XOOPS)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (XRegExp)
Out-of-date Version (XRegExp)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (XWiki)
Out-of-date Version (XWiki)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (YetiForce CRM)
Out-of-date Version (YetiForce CRM)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (YOURLS)
Out-of-date Version (YOURLS)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (YUI)
Out-of-date Version (YUI)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Zen Cart)
Out-of-date Version (Zen Cart)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (ZenPhoto)
Out-of-date Version (ZenPhoto)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Zepto.js)
Out-of-date Version (Zepto.js)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Zikula)
Out-of-date Version (Zikula)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Zope)
Out-of-date Version (Zope)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Out-of-date Version (Zurmo)
Out-of-date Version (Zurmo)
CAPEC-310
, 
CWE-1035
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
PCI v3.2-6.2
, 
Information
Phishing by Navigating Browser Tabs
Phishing by Navigating Browser Tabs
CWE-16
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A5
, 
OWASP 2017-A6
, 
WASC-15
, 
Low
Session Cookie Not Marked as Secure
Session Cookie Not Marked as Secure
CAPEC-102
, 
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
, 
CWE-614
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A6
, 
OWASP 2017-A3
, 
PCI v3.2-6.5.10
, 
WASC-15
, 
Medium
TRACE/TRACK Method Detected
TRACE/TRACK Method Detected
CAPEC-107
, 
CWE-16
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A5
, 
OWASP 2017-A6
, 
WASC-14
, 
Low