Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 14578 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2023-29204
XWiki URL Redirection to Untrusted Site (Open Redirect) Vulnerability
XWikiplatform
CVE-2023-29203
XWiki Exposure of Resource to Wrong Sphere Vulnerability
XWikiplatform
CVE-2023-29506
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2023-29508
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2023-26473
XWiki Vulnerability
XWikiplatform
CVE-2023-26056
XWiki Incorrect Authorization Vulnerability
XWikiplatform
CVE-2022-41929
XWiki Missing Authorization Vulnerability
XWikiplatform
CVE-2021-32731
XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
XWikiplatform
CVE-2022-36095
XWiki Cross-Site Request Forgery (CSRF) Vulnerability
XWikiplatform
CVE-2022-31167
XWiki Missing Authorization Vulnerability
XWikiplatform
CVE-2022-36097
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2021-32620
XWiki Incorrect Authorization Vulnerability
XWikiplatform
CVE-2021-32729
XWiki Incorrect Permission Assignment for Critical Resource Vulnerability
XWikiplatform
CVE-2022-29258
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-29253
XWiki Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
XWikiplatform
CVE-2022-29252
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-29251
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-24819
XWiki Exposure of Private Personal Information to an Unauthorized Actor Vulnerability
XWikiplatform
CVE-2022-23615
XWiki Incorrect Authorization Vulnerability
XWikiplatform
CVE-2022-23622
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2022-23618
XWiki URL Redirection to Untrusted Site (Open Redirect) Vulnerability
XWikiplatform
CVE-2022-23617
XWiki Missing Authorization Vulnerability
XWikiplatform
CVE-2022-23616
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
XWikiplatform
CVE-2021-32732
XWiki Cross-Site Request Forgery (CSRF) Vulnerability
XWikiplatform
CVE-2020-15171
XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
XWikiplatform
CVE-2021-32730
XWiki Cross-Site Request Forgery (CSRF) Vulnerability
XWikiplatform
CVE-2021-29459
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2021-21379
XWiki Improper Preservation of Permissions Vulnerability
XWikiplatform
CVE-2021-3137
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform
CVE-2018-16277
XWiki Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
XWikiplatform