Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Missing Update

This page lists 23222 vulnerabilities in this category.

Critical: 1488 High: 12513 Medium: 8440 Low: 777 Information: 4
Vulnerability Name
CVE
CWE
Severity
OpenSSL Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2021-3711)
CVE-2021-3711
CWE-120
Critical
Oracle Application Server CVE-2006-0285 Vulnerability (CVE-2006-0285)
CVE-2006-0285
-
Critical
Joomla Other Vulnerability (CVE-2006-0303)
CVE-2006-0303
-
Critical
Oracle Application Server CVE-2006-0291 Vulnerability (CVE-2006-0291)
CVE-2006-0291
-
Critical
Oracle Database Server CVE-2006-0291 Vulnerability (CVE-2006-0291)
CVE-2006-0291
-
Critical
Oracle Application Server CVE-2006-0290 Vulnerability (CVE-2006-0290)
CVE-2006-0290
-
Critical
Oracle Database Server CVE-2006-0290 Vulnerability (CVE-2006-0290)
CVE-2006-0290
-
Critical
Oracle Application Server CVE-2006-0289 Vulnerability (CVE-2006-0289)
CVE-2006-0289
-
Critical
Oracle Application Server CVE-2006-0288 Vulnerability (CVE-2006-0288)
CVE-2006-0288
-
Critical
Oracle Database Server CVE-2006-0287 Vulnerability (CVE-2006-0287)
CVE-2006-0287
-
Critical
Oracle Application Server CVE-2006-0287 Vulnerability (CVE-2006-0287)
CVE-2006-0287
-
Critical
Oracle Application Server CVE-2006-0286 Vulnerability (CVE-2006-0286)
CVE-2006-0286
-
Critical
Oracle Database Server CVE-2006-0286 Vulnerability (CVE-2006-0286)
CVE-2006-0286
-
Critical
Oracle Database Server CVE-2006-0285 Vulnerability (CVE-2006-0285)
CVE-2006-0285
-
Critical
Apache HTTP Server Improper Access Control Vulnerability (CVE-2025-23048)
CVE-2025-23048
CWE-284
Critical
Oracle Application Server CVE-2006-0284 Vulnerability (CVE-2006-0284)
CVE-2006-0284
-
Critical
Oracle Application Server CVE-2006-0283 Vulnerability (CVE-2006-0283)
CVE-2006-0283
-
Critical
Oracle Database Server CVE-2006-0283 Vulnerability (CVE-2006-0283)
CVE-2006-0283
-
Critical
Oracle Database Server CVE-2006-0282 Vulnerability (CVE-2006-0282)
CVE-2006-0282
-
Critical
Oracle Application Server CVE-2006-0282 Vulnerability (CVE-2006-0282)
CVE-2006-0282
-
Critical
WordPress Deserialization of Untrusted Data Vulnerability (CVE-2020-28032)
CVE-2020-28032
CWE-502
Critical
Oracle Application Server CVE-2006-0274 Vulnerability (CVE-2006-0274)
CVE-2006-0274
-
Critical
Oracle Application Server CVE-2006-0273 Vulnerability (CVE-2006-0273)
CVE-2006-0273
-
Critical
Oracle Database Server CVE-2006-0271 Vulnerability (CVE-2006-0271)
CVE-2006-0271
-
Critical
Oracle Database Server Cryptographic Issues Vulnerability (CVE-2006-0270)
CVE-2006-0270
-
Critical
Oracle Database Server CVE-2006-0268 Vulnerability (CVE-2006-0268)
CVE-2006-0268
-
Critical
osCommerce Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2020-27976)
CVE-2020-27976
CWE-138
Critical
Claroline Other Vulnerability (CVE-2006-0411)
CVE-2006-0411
-
Critical
Oracle Database Server CVE-2006-0266 Vulnerability (CVE-2006-0266)
CVE-2006-0266
-
Critical
LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-25019)
CVE-2019-25019
CWE-138
Critical
Oracle JRE CVE-2014-2397 Vulnerability (CVE-2014-2397)
CVE-2014-2397
-
Critical
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-25710)
CVE-2019-25710
CWE-138
Critical
Beego Framework Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-30223)
CVE-2025-30223
CWE-707
Critical
MODX Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-25911)
CVE-2020-25911
CWE-611
Critical
PHP Use After Free Vulnerability (CVE-2018-12882)
CVE-2018-12882
CWE-416
Critical
Oracle JRE CVE-2014-2410 Vulnerability (CVE-2014-2410)
CVE-2014-2410
-
Critical
XWikiplatform Missing Authorization Vulnerability (CVE-2025-29926)
CVE-2025-29926
CWE-862
Critical
Joomla Other Vulnerability (CVE-2006-1047)
CVE-2006-1047
-
Critical
PHP Other Vulnerability (CVE-2006-1017)
CVE-2006-1017
-
Critical
MyBB Improper Input Validation Vulnerability (CVE-2016-9420)
CVE-2016-9420
CWE-20
Critical
Oracle JRE CVE-2014-2421 Vulnerability (CVE-2014-2421)
CVE-2014-2421
-
Critical
Oracle JRE CVE-2010-0840 Vulnerability (CVE-2010-0840)
CVE-2010-0840
-
Critical
Jboss EAP Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2025-23368)
CVE-2025-23368
CWE-307
Critical
MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-9416)
CVE-2016-9416
CWE-138
Critical
MyBB Improper Access Control Vulnerability (CVE-2016-9412)
CVE-2016-9412
CWE-284
Critical
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-26935)
CVE-2020-26935
CWE-138
Critical
ZenCart Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-0697)
CVE-2006-0697
CWE-264
Critical
Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-26533)
CVE-2025-26533
CWE-138
Critical
Oracle JRE CVE-2012-4681 Vulnerability (CVE-2012-4681)
CVE-2012-4681
-
Critical
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-25226)
CVE-2025-25226
CWE-138
Critical
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2025-24893)
CVE-2025-24893
CWE-94
Critical
Python CVE-2020-27619 Vulnerability (CVE-2020-27619)
CVE-2020-27619
-
Critical
Apache Tomcat Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2025-24813)
CVE-2025-24813
CWE-706
Critical
Grafana Signature Verification Vulnerability (CVE-2020-27846)
CVE-2020-27846
-
Critical
Oracle Database Server CVE-2006-0267 Vulnerability (CVE-2006-0267)
CVE-2006-0267
-
Critical
Oracle Database Server CVE-2006-0265 Vulnerability (CVE-2006-0265)
CVE-2006-0265
-
Critical
Apache Tomcat Improper Encoding or Escaping of Output Vulnerability (CVE-2025-31651)
CVE-2025-31651
CWE-116
Critical
Joomla Other Vulnerability (CVE-2005-3773)
CVE-2005-3773
-
Critical
SharePoint Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2816)
CVE-2014-2816
CWE-264
Critical
Python Out-of-bounds Read Vulnerability (CVE-2025-13836)
CVE-2025-13836
CWE-125
Critical
PrestaShop CVE-2018-13784 Vulnerability (CVE-2018-13784)
CVE-2018-13784
-
Critical
Lighttpd Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2025-12642)
CVE-2025-12642
-
Critical
Jboss EAP Improper Input Validation Vulnerability (CVE-2025-12543)
CVE-2025-12543
CWE-20
Critical
Undertow Improper Input Validation Vulnerability (CVE-2025-12543)
CVE-2025-12543
CWE-20
Critical
Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-11165)
CVE-2025-11165
CWE-138
Critical
Dotclear Other Vulnerability (CVE-2005-3957)
CVE-2005-3957
-
Critical
ReviveAdserver Session Fixation Vulnerability (CVE-2016-9125)
CVE-2016-9125
CWE-384
Critical
ReviveAdserver Improper Authentication Vulnerability (CVE-2016-9124)
CVE-2016-9124
CWE-287
Critical
Joomla Credentials Management Errors Vulnerability (CVE-2016-9081)
CVE-2016-9081
-
Critical
Python Integer Overflow or Wraparound Vulnerability (CVE-2016-9063)
CVE-2016-9063
CWE-190
Critical
PHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2025-14179)
CVE-2025-14179
CWE-138
Critical
SugarCRM Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-3244)
CVE-2014-3244
CWE-611
Critical
PHP Out-of-bounds Write Vulnerability (CVE-2024-8932)
CVE-2024-8932
CWE-787
Critical
Django Use of Hard-coded Credentials Vulnerability (CVE-2016-9013)
CVE-2016-9013
CWE-798
Critical
MongoDb Use of Uninitialized Resource Vulnerability (CVE-2024-8654)
CVE-2024-8654
CWE-908
Critical