Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Medium Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Medium Severity Vulnerabilities
Found
8230 vulnerabilities
at
Medium
severity.
Vulnerability Name
CVE
CWE
Severity
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-33997)
CVE-2024-33997
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-33998)
CVE-2024-33998
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34000)
CVE-2024-34000
CWE-707
Medium
Moodle CVE-2024-34002 Vulnerability (CVE-2024-34002)
CVE-2024-34002
-
Medium
Moodle CVE-2024-34003 Vulnerability (CVE-2024-34003)
CVE-2024-34003
-
Medium
Moodle CVE-2024-34004 Vulnerability (CVE-2024-34004)
CVE-2024-34004
-
Medium
Moodle CVE-2024-34005 Vulnerability (CVE-2024-34005)
CVE-2024-34005
-
Medium
Moodle Inappropriate Encoding for Output Context Vulnerability (CVE-2024-34006)
CVE-2024-34006
CWE-838
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34355)
CVE-2024-34355
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34356)
CVE-2024-34356
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34357)
CVE-2024-34357
CWE-707
Medium
TYPO3 Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-34358)
CVE-2024-34358
CWE-770
Medium
Envoy Proxy Use After Free Vulnerability (CVE-2024-34362)
CVE-2024-34362
CWE-416
Medium
Envoy Proxy Out-of-bounds Write Vulnerability (CVE-2024-34364)
CVE-2024-34364
CWE-787
Medium
Rukovoditel Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34468)
CVE-2024-34468
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34500)
CVE-2024-34500
CWE-707
Medium
TYPO3 CVE-2024-34537 Vulnerability (CVE-2024-34537)
CVE-2024-34537
-
Medium
GeoServer CVE-2024-34696 Vulnerability (CVE-2024-34696)
CVE-2024-34696
-
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34716)
CVE-2024-34716
CWE-707
Medium
PrestaShop CVE-2024-34717 Vulnerability (CVE-2024-34717)
CVE-2024-34717
-
Medium
GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-34831)
CVE-2024-34831
CWE-707
Medium
IBM WebSEAL Weak Password Requirements Vulnerability (CVE-2024-35137)
CVE-2024-35137
CWE-521
Medium
IBM WebSEAL Incorrect Default Permissions Vulnerability (CVE-2024-35139)
CVE-2024-35139
CWE-276
Medium
GeoServer CVE-2024-35230 Vulnerability (CVE-2024-35230)
CVE-2024-35230
-
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-37383)
CVE-2024-37383
CWE-707
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-37384)
CVE-2024-37384
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-37674)
CVE-2024-37674
CWE-707
Medium
Squid Out-of-bounds Write Vulnerability (CVE-2024-37894)
CVE-2024-37894
CWE-787
Medium
XWikiplatform Missing Authorization Vulnerability (CVE-2024-37898)
CVE-2024-37898
CWE-862
Medium
XWikiplatform Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-37900)
CVE-2024-37900
CWE-94
Medium
Moodle CVE-2024-38273 Vulnerability (CVE-2024-38273)
CVE-2024-38273
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-38274)
CVE-2024-38274
CWE-707
Medium
Moodle Use of a Key Past its Expiration Date Vulnerability (CVE-2024-38277)
CVE-2024-38277
CWE-324
Medium
Apache Traffic Server CVE-2024-38311 Vulnerability (CVE-2024-38311)
CVE-2024-38311
-
Medium
XWiki Incorrect Authorization Vulnerability (CVE-2024-38369)
CVE-2024-38369
CWE-863
Medium
Django Observable Timing Discrepancy Vulnerability (CVE-2024-39329)
CVE-2024-39329
CWE-208
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-39330)
CVE-2024-39330
CWE-22
Medium
Open Resty Inefficient Algorithmic Complexity Vulnerability (CVE-2024-39702)
CVE-2024-39702
CWE-407
Medium
Apache HTTP Server CVE-2024-39884 Vulnerability (CVE-2024-39884)
CVE-2024-39884
-
Medium
PHP CVE-2024-3096 Vulnerability (CVE-2024-3096)
CVE-2024-3096
-
Medium
Dot CMS CVE-2024-3164 Vulnerability (CVE-2024-3164)
CVE-2024-3164
-
Medium
Dot CMS Insertion of Sensitive Information into Log File Vulnerability (CVE-2024-3165)
CVE-2024-3165
CWE-532
Medium
Artifactory CVE-2024-3505 Vulnerability (CVE-2024-3505)
CVE-2024-3505
-
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-3938)
CVE-2024-3938
CWE-707
Medium
MediaWiki Insertion of Sensitive Information into Log File Vulnerability (CVE-2024-40596)
CVE-2024-40596
CWE-532
Medium
MediaWiki Insertion of Sensitive Information into Log File Vulnerability (CVE-2024-40598)
CVE-2024-40598
CWE-532
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40599)
CVE-2024-40599
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40600)
CVE-2024-40600
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-40601)
CVE-2024-40601
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40602)
CVE-2024-40602
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-40603)
CVE-2024-40603
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40604)
CVE-2024-40604
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40605)
CVE-2024-40605
CWE-707
Medium
GeoServer Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-40625)
CVE-2024-40625
CWE-918
Medium
Apache HTTP Server CVE-2024-40725 Vulnerability (CVE-2024-40725)
CVE-2024-40725
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40743)
CVE-2024-40743
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-40747)
CVE-2024-40747
CWE-707
Medium
Ampache Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-41665)
CVE-2024-41665
CWE-707
Medium
XWikiplatform Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-41947)
CVE-2024-41947
CWE-707
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-42901)
CVE-2024-42901
CWE-707
Medium
LimeSurvey Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2024-42903)
CVE-2024-42903
CWE-138
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-43018)
CVE-2024-43018
CWE-138
Medium
Jenkins Missing Authorization Vulnerability (CVE-2024-43045)
CVE-2024-43045
CWE-862
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-43400)
CVE-2024-43400
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-43407)
CVE-2024-43407
CWE-707
Medium
Moodle Cleartext Storage of Sensitive Information Vulnerability (CVE-2024-43429)
CVE-2024-43429
CWE-312
Medium
Moodle Incorrect Default Permissions Vulnerability (CVE-2024-43430)
CVE-2024-43430
CWE-276
Medium
Moodle Cleartext Transmission of Sensitive Information Vulnerability (CVE-2024-43432)
CVE-2024-43432
CWE-319
Medium
Moodle Incorrect Authorization Vulnerability (CVE-2024-43433)
CVE-2024-43433
CWE-863
Medium
Moodle Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2024-43435)
CVE-2024-43435
CWE-754
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-43437)
CVE-2024-43437
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-43439)
CVE-2024-43439
CWE-707
Medium
Django CVE-2024-45231 Vulnerability (CVE-2024-45231)
CVE-2024-45231
-
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-45406)
CVE-2024-45406
CWE-707
Medium
XWikiplatform Missing Authorization Vulnerability (CVE-2024-45591)
CVE-2024-45591
CWE-862
Medium
« Previous
1
...
104
105
106
107
108
109
110
Next »
