Web Vulnerability & Security Check

Web Application Vulnerabilities Index

This page lists 144 vulnerabilities categorized as medium severity that can be detected by Invicti.

Select Category

Select Vulnerability

Vulnerability Name

Classification

Severity

Out of Band Code Execution via SSTI (Java FreeMarker)

Critical

Out of Band Code Execution via SSTI (Java Velocity)

Critical

Out of Band Code Execution via SSTI (Node.js Dot)

Critical

Out of Band Code Execution via SSTI (Node.js EJS)

Critical

Out of Band Code Execution via SSTI (Node.js Marko)

Critical

Out of Band Code Execution via SSTI (Node.js Nunjucks)

Critical

Out of Band Code Execution via SSTI (Node.js Pug (Jade))

Critical

Out of Band Code Execution via SSTI (PHP Smarty)

Critical

Out of Band Code Execution via SSTI (PHP Twig)

Critical

Out of Band Code Execution via SSTI (Python Jinja)

Critical

Out of Band Code Execution via SSTI (Python Mako)

Critical

Out of Band Code Execution via SSTI (Python Tornado)

Critical

Out of Band Command Injection

Critical

Out of Band Remote File Inclusion

Critical

Out of Band SAML Consumer Service XML Entity Injection

High

Out of Band SAML Consumer Service XSLT Injection

High

Out of Band SQL Injection

Critical

Out of Band XML External Entity Injection

High

Out-of-date (ASP.NET MVC)

Information

Out-of-Date (Bootstrap Select)

Information

Out-of-Date (Bootstrap Table)

Information

Out-of-Date (Bootstrap Typeahead)

Information

Out-of-date Component ({applicationName})

Low

Out-of-date (FrontPage)

Information

Out-of-Date (JQuery placeholder.js)

Information

Out-of-date (Mongrel)

Information

Out-of-date (Oracle Application Server)

Information

Out-of-date (Phusion Passenger)

Information

Out-of-date (SharePoint)

Information

Out-of-date (Taleo Web Server)

Information

Out-of-date (Varnish)

Information

Out-of-date Version (AbanteCart)

Information

Out-of-date Version (Ampache)

Information

Out-of-date Version (Angular)

Information

Out-of-date Version (AngularJS)

Information

Out-of-date Version (Apache)

Information

Out-of-date Version (Apache Coyote)

Information

Out-of-date Version (Apache Traffic Server)

Information

Out-of-date Version (Artifactory DevOps Solution)

Information

Out-of-date Version (ASP.NET SignalR)

Information

Out-of-date Version (Atlassian Confluence)

Information

Out-of-date Version (Atlassian Jira)

Information

Out-of-date Version (Atlassian Proxy)

Information

Out-of-date Version (ATutor)

Information

Out-of-date Version (axios)

Information

Out-of-date Version (Axway SecureTransport Server)

Information

Out-of-date Version (b2evolution)

Information

Out-of-date Version (Backbone.js)

Information

Out-of-date Version (bluebird)

Information

Out-of-date Version (Bootbox.js)

Information

Out-of-date Version (Bootstrap)

Information

Out-of-date Version (Bootstrap 3 Date/Time Picker)

Information

Out-of-date Version (Bootstrap Toggle)

Information

Out-of-date Version (CakePHP Framework)

Information

Out-of-date Version (CanvasJS)

Information

Out-of-date Version (Chamilo)

Information

Out-of-date Version (Chart.js)

Information

Out-of-date Version (Cherokee)

Information

Out-of-date Version (CherryPy)

Information

Out-of-date Version (CKEditor)

Information

Out-of-date Version (Claroline)

Information

Out-of-date Version (ClipBucket)

Information

Out-of-date Version (Collabtive)

Information

Out-of-date Version (Concerte5)

Information

Out-of-date Version (contao)

Information

Out-of-date Version (cookieconsent2)

Information

Out-of-date Version (Coppermine)

Information

Out-of-date Version (Cowboy HTTP Server)

Information

Out-of-date Version (CubeCart)

Information

Out-of-date Version (D3.js)

Information

Out-of-date Version (Daiquiri)

Information

Out-of-date Version (DataTables)

Information

Out-of-date Version (Django)

Information

Out-of-date Version (Dojo)

Information