Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Medium Severity Vulnerabilities

Found 15376 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2010-4634
osTicket Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
osTicket
CVE-2005-1436
osTicket Other Vulnerability
osTicket
CVE-2020-22609
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2020-22608
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2022-32074
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2022-4271
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-1320
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-1319
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-1317
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-1318
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-1316
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-1315
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2021-45811
osTicket Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
osTicket
CVE-2023-27149
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-27148
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2023-46967
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2025-45387
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
osTicket
CVE-2025-26241
osTicket Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
osTicket
CVE-2026-26895
osTicket Observable Discrepancy Vulnerability
osTicket
CVE-2014-9587
Roundcube Multiple Cross-site Request Forgery (CSRF) Vulnerabilities
Roundcube
CVE-2015-1433
Roundcube Cross-site Scripting (XSS) Vulnerability
Roundcube
CVE-2015-8793
Roundcube Cross-site Scripting (XSS) Vulnerability
Roundcube
CVE-2015-8864
Roundcube Cross-site Scripting (XSS) Vulnerability
Roundcube
CVE-2016-4068
Roundcube Cross-site Scripting (XSS) Vulnerability
Roundcube
CVE-2019-10740
Roundcube Unspesificed Vulnerability
Roundcube
CVE-2020-16145
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Roundcube
CVE-2020-15562
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Roundcube
CVE-2020-13965
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Roundcube
CVE-2020-13964
Roundcube Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Roundcube
CVE-2020-12626
Roundcube Cross-Site Request Forgery (CSRF) Vulnerability
Roundcube