Web Application Vulnerabilities Index

This page lists vulnerabilities categorized as Information severity that can be detected by Invicti.

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Select Vulnerability
Vulnerability Name
Classification
Severity
Out-of-date Version (React)
Out-of-date Version (React)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (RequireJS)
Out-of-date Version (RequireJS)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Resin Application Server)
Out-of-date Version (Resin Application Server)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Respond.js)
Out-of-date Version (Respond.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Restlet Framework)
Out-of-date Version (Restlet Framework)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Reveal.js)
Out-of-date Version (Reveal.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Revive Adserver)
Out-of-date Version (Revive Adserver)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Rickshaw)
Out-of-date Version (Rickshaw)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Riot.js)
Out-of-date Version (Riot.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (RoR)
Out-of-date Version (RoR)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Roundcube)
Out-of-date Version (Roundcube)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Ruby)
Out-of-date Version (Ruby)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (RubyGems)
Out-of-date Version (RubyGems)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Rukovoditel)
Out-of-date Version (Rukovoditel)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (ScrollReveal)
Out-of-date Version (ScrollReveal)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Select2)
Out-of-date Version (Select2)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Semantic UI)
Out-of-date Version (Semantic UI)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (SeoPanel)
Out-of-date Version (SeoPanel)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Serendipity)
Out-of-date Version (Serendipity)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Silverstripe CMS)
Out-of-date Version (Silverstripe CMS)
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
Information
Out-of-date Version (slick)
Out-of-date Version (slick)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Snap.svg)
Out-of-date Version (Snap.svg)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Sortable)
Out-of-date Version (Sortable)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Squid)
Out-of-date Version (Squid)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (SugarCRM)
Out-of-date Version (SugarCRM)
CWE-1035
, 
937
, 
ISO27001-A.18.1.3
, 
WASC-13
, 
Information
Out-of-date Version (Swagger UI)
Out-of-date Version (Swagger UI)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (SweetAlert2)
Out-of-date Version (SweetAlert2)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (TCExam)
Out-of-date Version (TCExam)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Telerik Web UI)
Out-of-date Version (Telerik Web UI)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Three.js)
Out-of-date Version (Three.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (TinyMCE)
Out-of-date Version (TinyMCE)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Tomcat)
Out-of-date Version (Tomcat)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Tornado Web Server)
Out-of-date Version (Tornado Web Server)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Trac Software Project Management Tool)
Out-of-date Version (Trac Software Project Management Tool)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Tracy Debugging Tool)
Out-of-date Version (Tracy Debugging Tool)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (TwistedWeb HTTP Server)
Out-of-date Version (TwistedWeb HTTP Server)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (typeahead.js)
Out-of-date Version (typeahead.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Typo3)
Out-of-date Version (Typo3)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
WASC-13
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (UAParser.js)
Out-of-date Version (UAParser.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Underscore.js)
Out-of-date Version (Underscore.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Undertow Web Server)
Out-of-date Version (Undertow Web Server)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Vanilla Forums)
Out-of-date Version (Vanilla Forums)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Video.js)
Out-of-date Version (Video.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Vtiger)
Out-of-date Version (Vtiger)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Vue.js)
Out-of-date Version (Vue.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (W3 Total Cache)
Out-of-date Version (W3 Total Cache)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (webERP)
Out-of-date Version (webERP)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (WeBid)
Out-of-date Version (WeBid)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (WebLogic)
Out-of-date Version (WebLogic)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Werkzeug Python WSGI Library)
Out-of-date Version (Werkzeug Python WSGI Library)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (WordPress)
Out-of-date Version (WordPress)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (XOOPS)
Out-of-date Version (XOOPS)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (XRegExp)
Out-of-date Version (XRegExp)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (XWiki)
Out-of-date Version (XWiki)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (YetiForce CRM)
Out-of-date Version (YetiForce CRM)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (YOURLS)
Out-of-date Version (YOURLS)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (YUI)
Out-of-date Version (YUI)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Zen Cart)
Out-of-date Version (Zen Cart)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (ZenPhoto)
Out-of-date Version (ZenPhoto)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Zepto.js)
Out-of-date Version (Zepto.js)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Zikula)
Out-of-date Version (Zikula)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Zope)
Out-of-date Version (Zope)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
Out-of-date Version (Zurmo)
Out-of-date Version (Zurmo)
PCI v3.2-6.2
, 
CAPEC-310
, 
CWE-1035
, 
937
, 
HIPAA-164.308(a)(1)(i)
, 
ISO27001-A.14.1.2
, 
OWASP 2013-A9
, 
OWASP 2017-A9
, 
Information
ownCloud Detected
ownCloud Detected
CWE-205
, 
ISO27001-A.14.2.5
, 
OWASP 2017-A6
, 
WASC-13
, 
Information
Pardot Server Identified
Pardot Server Identified
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:H/RL:O/RC:C
, 
Information
Payara Identified
Payara Identified
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:H/RL:O/RC:C
, 
Information
PdfJs Identified
PdfJs Identified
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
Information
Pega Identified
Pega Identified
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:H/RL:O/RC:C
, 
Information
Perl Identified
Perl Identified
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:H/RL:O/RC:C
, 
Information
pH7CMS Detected
pH7CMS Detected
CWE-205
, 
ISO27001-A.14.2.5
, 
OWASP 2017-A6
, 
WASC-13
, 
Information
Phaser Identified
Phaser Identified
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
Information
Phorum Detected
Phorum Detected
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
Information
Php Address Book Detected
Php Address Book Detected
CWE-205
, 
ISO27001-A.14.2.5
, 
WASC-13
, 
OWASP 2017-A6
, 
Information
phpBB Detected
phpBB Detected
CWE-205
, 
ISO27001-A.14.2.5
, 
OWASP 2017-A6
, 
WASC-13
, 
Information