Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Medium Severity Vulnerabilities

Found 15376 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2024-55891
TYPO3 Insertion of Sensitive Information into Log File Vulnerability
TYPO3
CVE-2025-47937
TYPO3 Incorrect Authorization Vulnerability
TYPO3
CVE-2025-47936
TYPO3 Server-Side Request Forgery (SSRF) Vulnerability
TYPO3
CVE-2024-47780
TYPO3 Incorrect Authorization Vulnerability
TYPO3
CVE-2024-34537
TYPO3 Vulnerability
TYPO3
CVE-2024-34358
TYPO3 Allocation of Resources Without Limits or Throttling Vulnerability
TYPO3
CVE-2024-34356
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TYPO3
CVE-2024-34357
TYPO3 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TYPO3
CVE-2025-47939
TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability
TYPO3
CVE-2025-59019
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
TYPO3
CVE-2025-59018
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
TYPO3
CVE-2025-59016
TYPO3 Generation of Error Message Containing Sensitive Information Vulnerability
TYPO3
CVE-2025-59015
TYPO3 Insufficient Entropy Vulnerability
TYPO3
CVE-2025-59013
TYPO3 URL Redirection to Untrusted Site (Open Redirect) Vulnerability
TYPO3
CVE-2025-7900
TYPO3 Authorization Bypass Through User-Controlled Key Vulnerability
TYPO3
CVE-2025-59021
TYPO3 Missing Authorization Vulnerability
TYPO3
CVE-2025-59020
TYPO3 Incorrect Authorization Vulnerability
TYPO3
CVE-2014-9441
lightbox2 Cross-Site Request Forgery (CSRF) Vulnerability
lightbox2
CVE-2015-1494
fancybox Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
fancybox
CVE-2015-6584
datatables Cross-site Scripting (XSS) Vulnerability
DataTables
CVE-2021-23445
DataTables Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
DataTables
CVE-2021-36713
DataTables Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
DataTables
CVE-2025-11031
DataTables Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
DataTables
CVE-2020-28500
Lodash Other Vulnerability
Lodash
CVE-2019-1010266
Lodash Allocation of Resources Without Limits or Throttling Vulnerability
Lodash
CVE-2018-16487
Lodash Vulnerability
Lodash
CVE-2018-3721
Lodash Vulnerability
Lodash
CVE-2025-13465
Lodash Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) Vulnerability
Lodash
CVE-2026-2950
Lodash Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) Vulnerability
Lodash
CVE-2020-28168
axios Server-Side Request Forgery (SSRF) Vulnerability
axios