Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 14578 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2017-5877
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2017-5876
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2017-5875
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2017-6003
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2018-17422
Dot CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Dot CMS
CVE-2018-16980
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2017-15219
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2008-3708
Dot CMS Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Dot CMS
CVE-2008-2397
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2016-3971
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2016-3688
Dot CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Dot CMS
CVE-2013-3484
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2012-1826
Dot CMS Permissions Privileges and Access Controls Vulnerability
Dot CMS
CVE-2024-3938
Dot CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Dot CMS
CVE-2022-22946
Spring Cloud Gateway Improper Certificate Validation Vulnerability
Spring Cloud Gateway
CVE-2021-22051
Spring Cloud Gateway Incorrect Authorization Vulnerability
Spring Cloud Gateway
CVE-2023-45818
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2024-21908
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2023-48219
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2023-45819
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2024-21911
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2020-23066
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2024-21910
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2022-23494
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2020-12648
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2020-17480
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2019-1010091
TinyMCE Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
TinyMCE
CVE-2021-36884
Wordpress Plugin Backup Migration Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Wordpress Plugin Backup Migration
CVE-2019-2392
MongoDb Integer Overflow or Wraparound Vulnerability
MongoDb
CVE-2021-32039
MongoDb Insufficiently Protected Credentials Vulnerability
MongoDb