Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Medium Severity Vulnerabilities

Found 15376 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2019-14329
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2019-13643
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2018-17302
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2018-17301
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2014-7987
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2014-7986
EspoCRM Permissions Privileges and Access Controls Vulnerability
EspoCRM
CVE-2021-3539
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2022-38845
EspoCRM Improper Neutralization of Formula Elements in a CSV File Vulnerability
EspoCRM
CVE-2022-38846
EspoCRM Cleartext Transmission of Sensitive Information Vulnerability
EspoCRM
CVE-2023-46736
EspoCRM Server-Side Request Forgery (SSRF) Vulnerability
EspoCRM
CVE-2025-32385
EspoCRM Improper Restriction of Rendered UI Layers or Frames Vulnerability
EspoCRM
CVE-2025-52575
EspoCRM Improper Neutralization of Special Elements used in an LDAP Query (LDAP Injection) Vulnerability
EspoCRM
CVE-2024-24818
EspoCRM URL Redirection to Untrusted Site (Open Redirect) Vulnerability
EspoCRM
CVE-2025-52892
EspoCRM Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
EspoCRM
CVE-2025-59428
EspoCRM Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
EspoCRM
CVE-2026-33740
EspoCRM Authorization Bypass Through User-Controlled Key Vulnerability
EspoCRM
CVE-2026-33657
EspoCRM Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Vulnerability
EspoCRM
CVE-2026-33534
EspoCRM Server-Side Request Forgery (SSRF) Vulnerability
EspoCRM
CVE-2017-15809
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ
CVE-2017-15728
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ
CVE-2017-15727
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ
CVE-2017-14619
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ
CVE-2017-14618
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ
CVE-2017-7579
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ
CVE-2014-6050
phpMyFAQ 7PK - Security Features Vulnerability
phpMyFAQ
CVE-2014-6048
phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
phpMyFAQ
CVE-2014-6047
phpMyFAQ Permission Issues Vulnerability
phpMyFAQ
CVE-2014-0814
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ
CVE-2014-0813
phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability
phpMyFAQ
CVE-2010-4821
phpMyFAQ Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
phpMyFAQ