Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Medium Severity Vulnerabilities

Found 14663 vulnerabilities at Medium severity.

Reference
Title
Technology
CVE-2020-15104
Envoy Proxy Origin Validation Error Vulnerability
Envoy Proxy
CVE-2020-8660
Envoy Proxy Insufficient Verification of Data Authenticity Vulnerability
Envoy Proxy
CVE-2022-23606
Envoy Proxy Uncontrolled Recursion Vulnerability
Envoy Proxy
CVE-2022-21657
Envoy Proxy Improper Certificate Validation Vulnerability
Envoy Proxy
CVE-2022-21656
Envoy Proxy Improper Certificate Validation Vulnerability
Envoy Proxy
CVE-2022-29224
Envoy Proxy NULL Pointer Dereference Vulnerability
Envoy Proxy
CVE-2023-27492
Envoy Proxy Allocation of Resources Without Limits or Throttling Vulnerability
Envoy Proxy
CVE-2023-35942
Envoy Proxy Use After Free Vulnerability
Envoy Proxy
CVE-2023-35944
Envoy Proxy Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
Envoy Proxy
CVE-2024-23323
Envoy Proxy Uncontrolled Resource Consumption Vulnerability
Envoy Proxy
CVE-2024-34362
Envoy Proxy Use After Free Vulnerability
Envoy Proxy
CVE-2024-34364
Envoy Proxy Out-of-bounds Write Vulnerability
Envoy Proxy
CVE-2024-45808
Envoy Proxy Improper Encoding or Escaping of Output Vulnerability
Envoy Proxy
CVE-2019-12387
Twisted Web HTTP Server Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Twisted Web HTTP Server
CVE-2016-1000111
Twisted Web HTTP Server Direct Request (Forced Browsing) Vulnerability
Twisted Web HTTP Server
CVE-2022-39348
Twisted Web HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Twisted Web HTTP Server
CVE-2023-46137
Twisted Web HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
Twisted Web HTTP Server
CVE-2020-5284
Next.js Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Next.js
CVE-2018-18282
Next.js Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Next.js
CVE-2022-36046
Next.js Improper Check for Unusual or Exceptional Conditions Vulnerability
Next.js
CVE-2021-39178
Next.js Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Next.js
CVE-2021-37699
Next.js URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Next.js
CVE-2020-15242
Next.js URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Next.js
CVE-2020-12480
Play Framework Cross-Site Request Forgery (CSRF) Vulnerability
Play Framework
CVE-2020-7937
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2020-7936
Plone CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Plone CMS
CVE-2013-7062
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS
CVE-2017-1000484
Plone CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Plone CMS
CVE-2017-1000483
Plone CMS Vulnerability
Plone CMS
CVE-2017-1000482
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Plone CMS