Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 14578 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2020-11026
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
WordPress
CVE-2020-4047
WordPress Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Vulnerability
WordPress
CVE-2020-4048
WordPress URL Redirection to Untrusted Site (Open Redirect) Vulnerability
WordPress
CVE-2023-2745
WordPress Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
WordPress
CVE-2023-38000
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
WordPress
CVE-2009-2432
WordPress Permissions Privileges and Access Controls Vulnerability
WordPress
CVE-2023-5561
WordPress Vulnerability
WordPress
CVE-2023-39999
WordPress Vulnerability
WordPress
CVE-2010-5106
WordPress xmlrpc.php Remote Security Bypass Vulnerability
WordPress
CVE-2009-2334
WordPress wp-admin/admin.php Module Configuration Security Bypass Vulnerability
WordPress
CVE-2008-4769
WordPress 2.3.3 Directory Traversal Vulnerability
WordPress
CVE-2009-2851
WordPress 2.8.1 Comment Author URI Cross-Site Scripting Vulnerability
WordPress
CVE-2008-4106
WordPress 2.6.1 Lost Password SQL Column Truncation Unauthorized Access Vulnerability
WordPress
CVE-2008-4107
WordPress 2.6.1 Lost Password SQL Column Truncation Unauthorized Access Vulnerability
WordPress
CVE-2009-2335
WordPress 2.8 Multiple Existing/Non-Existing Username Enumeration Weaknesses
WordPress
CVE-2009-2336
WordPress 2.8 Multiple Existing/Non-Existing Username Enumeration Weaknesses
WordPress
CVE-2008-5278
WordPress 2.6.3 Cross-Site Scripting Vulnerability
WordPress
CVE-2008-3747
WordPress get_edit_post_link() and get_edit_comment_link() Multiple Eavesdropping Vulnerabilities
WordPress
CVE-2008-3233
WordPress press-this.php Multiple Cross-Site Scripting Vulnerabilities
WordPress
CVE-2008-0664
WordPress 2.3.2 Post Edit Unauthorized Access Vulnerability
WordPress
CVE-2008-1930
WordPress 2.5 Cookie Integrity Protection Unauthorized Access Vulnerability
WordPress
CVE-2008-0193
WordPress Multiple Cross-Site Scripting Vulnerabilities
WordPress
No CVE number
WordPress 2.3.1 Unauthorized Post Access Vulnerability
WordPress
CVE-2007-5710
WordPress 2.3 Cross-Site Scripting Vulnerability
WordPress
CVE-2007-5105
WordPress wp-register.php Multiple Cross-Site Scripting Vulnerabilities
WordPress
CVE-2007-5106
WordPress wp-register.php Multiple Cross-Site Scripting Vulnerabilities
WordPress
CVE-2007-1244
WordPress 2.1.1 Cross-Site Scripting Vulnerability
WordPress
CVE-2007-1049
WordPress templates.php Cross-Site Scripting Vulnerability
WordPress
CVE-2006-6808
WordPress 2.0.5 Cross-Site Scripting Vulnerability
WordPress
CVE-2007-0106
WordPress 2.0.5 Invalid CSRF Token Cross-Site Scripting Vulnerability
WordPress