Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.170326144420

Medium Severity Vulnerabilities

Found 15290 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2022-28803
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
silverstripeCMS
CVE-2022-24444
silverstripeCMS Session Fixation Vulnerability
silverstripeCMS
CVE-2021-41559
silverstripeCMS Improper Restriction of Recursive Entity References in DTDs (XML Entity Expansion) Vulnerability
silverstripeCMS
CVE-2021-36150
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
silverstripeCMS
CVE-2021-28661
silverstripeCMS Incorrect Authorization Vulnerability
silverstripeCMS
CVE-2020-9311
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
silverstripeCMS
CVE-2020-6165
silverstripeCMS Incorrect Default Permissions Vulnerability
silverstripeCMS
CVE-2020-26138
silverstripeCMS Improper Input Validation Vulnerability
silverstripeCMS
CVE-2020-26136
silverstripeCMS Improper Authentication Vulnerability
silverstripeCMS
CVE-2020-25817
silverstripeCMS Improper Restriction of XML External Entity Reference Vulnerability
silverstripeCMS
CVE-2019-19326
silverstripeCMS Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
silverstripeCMS
CVE-2019-19325
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
silverstripeCMS
CVE-2019-16409
silverstripeCMS Vulnerability
silverstripeCMS
CVE-2019-14273
silverstripeCMS Files or Directories Accessible to External Parties Vulnerability
silverstripeCMS
CVE-2019-14272
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
silverstripeCMS
CVE-2019-12246
silverstripeCMS Cross-Site Request Forgery (CSRF) Vulnerability
silverstripeCMS
CVE-2019-12245
silverstripeCMS Incorrect Permission Assignment for Critical Resource Vulnerability
silverstripeCMS
CVE-2019-12205
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
silverstripeCMS
CVE-2019-12203
silverstripeCMS Session Fixation Vulnerability
silverstripeCMS
CVE-2017-18049
silverstripeCMS Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
silverstripeCMS
CVE-2024-2291
MOVEit Transfer Other Vulnerability
MOVEit Transfer
CVE-2023-6217
MOVEit Transfer Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
MOVEit Transfer
CVE-2023-42656
MOVEit Transfer Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
MOVEit Transfer
CVE-2020-28647
MOVEit Transfer Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
MOVEit Transfer
CVE-2025-13147
MOVEit Transfer Server-Side Request Forgery (SSRF) Vulnerability
MOVEit Transfer
CVE-2021-27653
Pega Infinity Vulnerability
Pega Infinity
CVE-2024-6701
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2024-6700
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2024-6702
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2023-4843
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity