Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Known Vulnerabilities

This page lists 14794 vulnerabilities in this category.

Critical: 1587 High: 3937 Medium: 8491 Low: 777 Information: 2
Vulnerability Name
CVE
CWE
Severity
PHP Use After Free Vulnerability (CVE-2018-12882)
CVE-2018-12882
CWE-416
Critical
Oracle JRE CVE-2013-0426 Vulnerability (CVE-2013-0426)
CVE-2013-0426
-
Critical
Oracle Database Server CVE-2006-3701 Vulnerability (CVE-2006-3701)
CVE-2006-3701
-
Critical
Oracle Database Server Other Vulnerability (CVE-2006-3700)
CVE-2006-3700
-
Critical
Oracle Database Server CVE-2006-3699 Vulnerability (CVE-2006-3699)
CVE-2006-3699
-
Critical
Oracle Database Server CVE-2006-3698 Vulnerability (CVE-2006-3698)
CVE-2006-3698
-
Critical
Dolibarr Improper Authentication Vulnerability (CVE-2020-7995)
CVE-2020-7995
CWE-287
Critical
Lighttpd Integer Overflow or Wraparound Vulnerability (CVE-2019-11072)
CVE-2019-11072
CWE-190
Critical
Oracle JRE CVE-2013-0428 Vulnerability (CVE-2013-0428)
CVE-2013-0428
-
Critical
MediaWiki Improper Privilege Management Vulnerability (CVE-2020-10534)
CVE-2020-10534
CWE-269
Critical
WebLogic CVE-2020-14644 Vulnerability (CVE-2020-14644)
CVE-2020-14644
-
Critical
GeoServer Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-36401)
CVE-2024-36401
CWE-94
Critical
WeBid Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-35409)
CVE-2024-35409
CWE-138
Critical
PHP Double Free Vulnerability (CVE-2019-11049)
CVE-2019-11049
CWE-415
Critical
Oracle Database Server CVE-2006-3703 Vulnerability (CVE-2006-3703)
CVE-2006-3703
-
Critical
Ruby on Rails Deserialization of Untrusted Data Vulnerability (CVE-2020-8165)
CVE-2020-8165
CWE-502
Critical
Oracle JRE CVE-2013-0425 Vulnerability (CVE-2013-0425)
CVE-2013-0425
-
Critical
Oracle HTTP Server Out-of-bounds Write Vulnerability (CVE-2021-44790)
CVE-2021-44790
CWE-787
Critical
PHP Other Vulnerability (CVE-2006-3017)
CVE-2006-3017
-
Critical
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-10243)
CVE-2020-10243
CWE-138
Critical
WebLogic CVE-2020-14645 Vulnerability (CVE-2020-14645)
CVE-2020-14645
-
Critical
Oracle JRE CVE-2010-0840 Vulnerability (CVE-2010-0840)
CVE-2010-0840
-
Critical
CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-34832)
CVE-2024-34832
CWE-22
Critical
Oracle JRE Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0422)
CVE-2013-0422
CWE-264
Critical
WordPress Other Vulnerability (CVE-2021-44223)
CVE-2021-44223
-
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13447)
CVE-2018-13447
CWE-138
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-13448)
CVE-2018-13448
CWE-138
Critical
Oracle Database Server CVE-2006-3702 Vulnerability (CVE-2006-3702)
CVE-2006-3702
-
Critical
Oracle Database Server Other Vulnerability (CVE-2006-3704)
CVE-2006-3704
-
Critical
Roundcube Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-44026)
CVE-2021-44026
CWE-138
Critical
SharePoint CVE-2023-21716 Vulnerability (CVE-2023-21716)
CVE-2023-21716
-
Critical
Oracle JRE CVE-2013-0450 Vulnerability (CVE-2013-0450)
CVE-2013-0450
-
Critical
XWikiplatform Relative Path Traversal Vulnerability (CVE-2025-55747)
CVE-2025-55747
CWE-23
Critical
Jetty Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2009-5047)
CVE-2009-5047
CWE-119
Critical
EspoCRM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7985)
CVE-2014-7985
CWE-22
Critical
Apache Tomcat Improper Neutralization of Escape, Meta, or Control Sequences Vulnerability (CVE-2025-55754)
CVE-2025-55754
CWE-150
Critical
LimeSurvey Deserialization of Untrusted Data Vulnerability (CVE-2025-56422)
CVE-2025-56422
CWE-502
Critical
Oracle JRE CVE-2013-0446 Vulnerability (CVE-2013-0446)
CVE-2013-0446
-
Critical
Oracle JRE CVE-2013-0445 Vulnerability (CVE-2013-0445)
CVE-2013-0445
-
Critical
Oracle JRE CVE-2013-0442 Vulnerability (CVE-2013-0442)
CVE-2013-0442
-
Critical
Oracle JRE CVE-2013-0441 Vulnerability (CVE-2013-0441)
CVE-2013-0441
-
Critical
Oracle Database Server CVE-2010-0071 Vulnerability (CVE-2010-0071)
CVE-2010-0071
-
Critical
WordPress CVE-2006-4028 Vulnerability (CVE-2006-4028)
CVE-2006-4028
-
Critical
Oracle JRE CVE-2013-0437 Vulnerability (CVE-2013-0437)
CVE-2013-0437
-
Critical
Oracle Database Server CVE-2006-3705 Vulnerability (CVE-2006-3705)
CVE-2006-3705
-
Critical
Craft CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-37843)
CVE-2024-37843
CWE-138
Critical
phpMyAdmin CVE-2017-18264 Vulnerability (CVE-2017-18264)
CVE-2017-18264
-
Critical
Apache HTTP Server CVE-2010-0425 Vulnerability (CVE-2010-0425)
CVE-2010-0425
-
Critical
Oracle HTTP Server CVE-2010-0425 Vulnerability (CVE-2010-0425)
CVE-2010-0425
-
Critical
OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2006-3738)
CVE-2006-3738
CWE-119
Critical
IBMHttpServer CVE-2010-0425 Vulnerability (CVE-2010-0425)
CVE-2010-0425
-
Critical
GeoServer Improper Restriction of XML External Entity Reference Vulnerability (CVE-2025-58360)
CVE-2025-58360
CWE-611
Critical
Oracle Application Server Other Vulnerability (CVE-2006-3710)
CVE-2006-3710
-
Critical
Plone CMS Improper Privilege Management Vulnerability (CVE-2020-7941)
CVE-2020-7941
CWE-269
Critical
Oracle Application Server Other Vulnerability (CVE-2006-3708)
CVE-2006-3708
-
Critical
Roundcube Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2024-37385)
CVE-2024-37385
CWE-138
Critical
Liferay Portal Deserialization of Untrusted Data Vulnerability (CVE-2020-7961)
CVE-2020-7961
CWE-502
Critical
TwistedHTTP Request Splitting Vulnerability (CVE-2020-10109)
CVE-2020-10109
-
Critical
PHP Out-of-bounds Write Vulnerability (CVE-2019-11043)
CVE-2019-11043
CWE-787
Critical
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-55208)
CVE-2025-55208
CWE-707
Critical
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-17485)
CVE-2017-17485
CWE-502
Critical
Atlassian Jira Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-1165)
CVE-2010-1165
CWE-94
Critical
Oracle Database Server Other Vulnerability (CVE-2006-1867)
CVE-2006-1867
-
Critical
Oracle Database Server CVE-2006-1866 Vulnerability (CVE-2006-1866)
CVE-2006-1866
-
Critical
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-9912)
CVE-2014-9912
CWE-119
Critical
SharePoint Resource Management Errors Vulnerability (CVE-2015-0064)
CVE-2015-0064
-
Critical
SharePoint Other Vulnerability (CVE-2015-0085)
CVE-2015-0085
-
Critical
SharePoint Resource Management Errors Vulnerability (CVE-2015-0086)
CVE-2015-0086
-
Critical
OpenVPN AS Other Vulnerability (CVE-2006-1629)
CVE-2006-1629
-
Critical
Nexus Repository Manager Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2017-17717)
CVE-2017-17717
CWE-327
Critical
Oracle HTTP Server Improper Input Validation Vulnerability (CVE-2020-29507)
CVE-2020-29507
CWE-20
Critical
Oracle HTTP Server Other Vulnerability (CVE-2020-29506)
CVE-2020-29506
-
Critical
GlassFish Use of Hard-coded Credentials Vulnerability (CVE-2018-14324)
CVE-2018-14324
CWE-798
Critical
Oracle Database Server CVE-2006-1870 Vulnerability (CVE-2006-1870)
CVE-2006-1870
-
Critical
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2010-1433)
CVE-2010-1433
CWE-434
Critical