Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.130426185443

Medium Severity Vulnerabilities

Found 15365 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2019-12246
silverstripeCMS Cross-Site Request Forgery (CSRF) Vulnerability
silverstripeCMS
CVE-2019-12245
silverstripeCMS Incorrect Permission Assignment for Critical Resource Vulnerability
silverstripeCMS
CVE-2019-12205
silverstripeCMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
silverstripeCMS
CVE-2019-12203
silverstripeCMS Session Fixation Vulnerability
silverstripeCMS
CVE-2017-18049
silverstripeCMS Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
silverstripeCMS
CVE-2024-2291
MOVEit Transfer Other Vulnerability
MOVEit Transfer
CVE-2023-6217
MOVEit Transfer Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
MOVEit Transfer
CVE-2023-42656
MOVEit Transfer Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
MOVEit Transfer
CVE-2020-28647
MOVEit Transfer Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
MOVEit Transfer
CVE-2025-13147
MOVEit Transfer Server-Side Request Forgery (SSRF) Vulnerability
MOVEit Transfer
CVE-2021-27653
Pega Infinity Vulnerability
Pega Infinity
CVE-2024-6701
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2024-6700
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2024-6702
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2023-4843
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2023-50167
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2023-26465
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2022-35656
Pega Infinity Cross-Site Request Forgery (CSRF) Vulnerability
Pega Infinity
CVE-2022-35655
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2022-35654
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2020-24353
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2020-23957
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2019-16388
Pega Infinity Direct Request (Forced Browsing) Vulnerability
Pega Infinity
CVE-2019-16386
Pega Infinity Direct Request (Forced Browsing) Vulnerability
Pega Infinity
CVE-2017-17478
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2017-11356
Pega Infinity Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Pega Infinity
CVE-2017-11355
Pega Infinity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2024-12211
Pega Infinity Improper Neutralization of Input During Web Page Generation (Stored Cross-site Scripting) Vulnerability
Pega Infinity
CVE-2019-16374
Pega Platform LDAP Injection Vulnerability
Pega Infinity
CVE-2025-8681
Pega Infinity Improper Neutralization of Input During Web Page Generation (Stored Cross-site Scripting) Vulnerability
Pega Infinity