Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Medium Severity Vulnerabilities

Found 15376 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2025-59540
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Chamilo
CVE-2026-30882
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Chamilo
CVE-2026-30876
Chamilo Observable Response Discrepancy Vulnerability
Chamilo
CVE-2026-33737
Chamilo Improper Restriction of XML External Entity Reference Vulnerability
Chamilo
CVE-2026-33708
Chamilo Missing Authorization Vulnerability
Chamilo
CVE-2026-33705
Chamilo Insertion of Sensitive Information into Externally-Accessible File or Directory Vulnerability
Chamilo
CVE-2026-33141
Chamilo Authorization Bypass Through User-Controlled Key Vulnerability
Chamilo
CVE-2026-32932
Chamilo URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Chamilo
CVE-2026-31941
Chamilo Server-Side Request Forgery (SSRF) Vulnerability
Chamilo
CVE-2025-66447
Chamilo URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Chamilo
CVE-2026-34370
Chamilo Improper Authorization Vulnerability
Chamilo
CVE-2026-34161
Chamilo Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Chamilo
CVE-2011-5130
Family Connections Improper Control of Generation of Code (Code Injection) Vulnerability
Family Connections
CVE-2009-2010
Family Connections Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Family Connections
CVE-2008-2901
Family Connections Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Family Connections
CVE-2018-14481
Osclass Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Osclass
CVE-2014-8085
Osclass Other Vulnerability
Osclass
CVE-2014-6308
Osclass Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Osclass
CVE-2014-6280
Osclass Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Osclass
CVE-2012-5163
Osclass Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Osclass
CVE-2012-5162
Osclass Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Osclass
CVE-2019-14550
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14549
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14548
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14547
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14546
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14350
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14349
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14331
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-14330
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM