Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 14578 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2021-41164
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2022-24728
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2021-32809
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2022-48110
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2023-28439
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2024-24815
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2024-24816
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2024-43407
CKEditor Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
CKEditor
CVE-2019-8331
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2018-20677
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2018-20676
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2016-10735
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2018-14042
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2018-14041
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2018-14040
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2024-6531
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
CVE-2024-6484
Bootstrap Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Bootstrap
No CVE number
jsTree Cross-site Scripting (XSS) Vulnerability
jsTree
CVE-2016-4055
Moment.js Uncontrolled Resource Consumption Vulnerability
Moment.js
CVE-2016-10744
Select2 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Select2
CVE-2019-14862
Knockout.js Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Knockout.js
No CVE number
Knockout.js Cross-site Scripting (XSS) Vulnerability
Knockout.js
CVE-2013-5042
ASP.NET SignalR Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
ASP.NET SignalR
CVE-2018-6341
React Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
React
CVE-2012-0829
Mibew Messenger Cross-Site Request Forgery (CSRF) Vulnerability
Mibew Messenger
CVE-2018-20420
WebERP Incorrect Permission Assignment for Critical Resource Vulnerability
WebERP
CVE-2020-22474
WebERP Incorrect Permission Assignment for Critical Resource Vulnerability
WebERP
CVE-2020-21244
Frontaccounting Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Frontaccounting
CVE-2011-3740
Frontaccounting Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Frontaccounting
CVE-2007-5148
Frontaccounting Improper Control of Generation of Code (Code Injection) Vulnerability
Frontaccounting