Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 14578 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2016-1000111
Twisted Web HTTP Server Direct Request (Forced Browsing) Vulnerability
Twisted Web HTTP Server
CVE-2022-39348
Twisted Web HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Twisted Web HTTP Server
CVE-2023-46137
Twisted Web HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
Twisted Web HTTP Server
CVE-2020-5284
Next.js Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Next.js
CVE-2018-18282
Next.js Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Next.js
CVE-2022-36046
Next.js Improper Check for Unusual or Exceptional Conditions Vulnerability
Next.js
CVE-2021-39178
Next.js Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Next.js
CVE-2021-37699
Next.js URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Next.js
CVE-2020-15242
Next.js URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Next.js
CVE-2020-12480
Play Framework Cross-Site Request Forgery (CSRF) Vulnerability
Play Framework
CVE-2020-7937
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2020-7936
Plone CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Plone CMS
CVE-2013-7062
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2017-1000484
Plone CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Plone CMS
CVE-2017-1000483
Plone CMS Vulnerability
Plone CMS
CVE-2017-1000482
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2017-1000481
Plone CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Plone CMS
CVE-2015-7317
Plone CMS Permissions Privileges and Access Controls Vulnerability
Plone CMS
CVE-2015-7316
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2015-7315
Plone CMS Improper Access Control Vulnerability
Plone CMS
CVE-2017-5524
Plone CMS Use of Externally-Controlled Format String Vulnerability
Plone CMS
CVE-2016-7140
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2016-7139
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2016-7138
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2016-7137
Plone CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Plone CMS
CVE-2016-7136
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2016-7135
Plone CMS Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Plone CMS
CVE-2016-4043
Plone CMS Permissions Privileges and Access Controls Vulnerability
Plone CMS
CVE-2016-4042
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Plone CMS
CVE-2016-7147
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS