Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 14578 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2023-47126
TYPO3 Vulnerability
TYPO3
CVE-2023-47125
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TYPO3
CVE-2023-30451
TYPO3 Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
TYPO3
CVE-2024-25118
TYPO3 Vulnerability
TYPO3
CVE-2024-25119
TYPO3 Vulnerability
TYPO3
CVE-2024-25120
TYPO3 Vulnerability
TYPO3
CVE-2024-34355
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TYPO3
CVE-2014-9441
lightbox2 Cross-Site Request Forgery (CSRF) Vulnerability
lightbox2
CVE-2015-1494
fancybox Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
fancybox
CVE-2015-6584
datatables Cross-site Scripting (XSS) Vulnerability
DataTables
CVE-2021-23445
DataTables Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
DataTables
CVE-2021-36713
DataTables Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
DataTables
CVE-2020-28500
Lodash Other Vulnerability
Lodash
CVE-2019-1010266
Lodash Allocation of Resources Without Limits or Throttling Vulnerability
Lodash
CVE-2018-16487
Lodash Vulnerability
Lodash
CVE-2018-3721
Lodash Vulnerability
Lodash
CVE-2020-28168
axios Server-Side Request Forgery (SSRF) Vulnerability
axios
CVE-2023-45857
axios Cross-Site Request Forgery (CSRF) Vulnerability
axios
CVE-2011-3609
JBoss Application Server Cross-Site Request Forgery (CSRF) Vulnerability
Jboss Application Server
CVE-2011-3606
JBoss Application Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Jboss Application Server
CVE-2007-1354
JBoss Application Server Privilege Escalation Vulnerability
Jboss Application Server
CVE-2014-4668
Cherokee Improper Authentication Vulnerability
Cherokee
CVE-2011-2191
Cherokee Cross-Site Request Forgery (CSRF) Vulnerability
Cherokee
CVE-2009-4489
Cherokee Improper Input Validation Vulnerability
Cherokee
CVE-2021-29489
Highcharts JS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Highcharts JS
CVE-2018-1999024
MathJax Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
MathJax
CVE-2020-2966
WebLogic Vulnerability
WebLogic
CVE-2020-14572
WebLogic Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
WebLogic
CVE-2020-2869
WebLogic Vulnerability
WebLogic
CVE-2020-2829
WebLogic Vulnerability
WebLogic