Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Medium Severity Vulnerabilities

Found 8734 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
PHP CVE-2007-5898 Vulnerability (CVE-2007-5898)
CVE-2007-5898
-
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5899)
CVE-2007-5899
CWE-200
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5900)
CVE-2007-5900
CWE-264
Medium
MySQL Other Vulnerability (CVE-2007-5970)
CVE-2007-5970
-
Medium
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-5976)
CVE-2007-5976
CWE-138
Medium
PostgreSQL Numeric Errors Vulnerability (CVE-2007-6067)
CVE-2007-6067
-
Medium
Ruby on Rails Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2007-6077)
CVE-2007-6077
CWE-362
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6203)
CVE-2007-6203
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6205)
CVE-2007-6205
CWE-707
Medium
Oracle Database Server Credentials Management Errors Vulnerability (CVE-2007-6260)
CVE-2007-6260
-
Medium
Apache Tomcat Other Vulnerability (CVE-2007-6286)
CVE-2007-6286
-
Medium
MySQL Other Vulnerability (CVE-2007-6304)
CVE-2007-6304
-
Medium
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-6318)
CVE-2007-6318
CWE-138
Medium
TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-6381)
CVE-2007-6381
CWE-138
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6388)
CVE-2007-6388
CWE-707
Medium
Apache HTTP Server Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6420)
CVE-2007-6420
CWE-352
Medium
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6422)
CVE-2007-6422
-
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-6514)
CVE-2007-6514
CWE-200
Medium
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-6600)
CVE-2007-6600
CWE-264
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6617)
CVE-2007-6617
CWE-707
Medium
Atlassian Jira Other Vulnerability (CVE-2007-6618)
CVE-2007-6618
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6677)
CVE-2007-6677
CWE-707
Medium
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6750)
CVE-2007-6750
-
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6752)
CVE-2007-6752
CWE-352
Medium
Apache Tomcat Other Vulnerability (CVE-2008-0002)
CVE-2008-0002
-
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0005)
CVE-2008-0005
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0123)
CVE-2008-0123
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0124)
CVE-2008-0124
CWE-707
Medium
Apache Tomcat Configuration Vulnerability (CVE-2008-0128)
CVE-2008-0128
-
Medium
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-0191)
CVE-2008-0191
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0192)
CVE-2008-0192
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0193)
CVE-2008-0193
CWE-707
Medium
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-0195)
CVE-2008-0195
CWE-200
Medium
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0196)
CVE-2008-0196
CWE-22
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0198)
CVE-2008-0198
CWE-352
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0272)
CVE-2008-0272
CWE-352
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0273)
CVE-2008-0273
CWE-707
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0276)
CVE-2008-0276
CWE-707
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0455)
CVE-2008-0455
CWE-707
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0455)
CVE-2008-0455
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0460)
CVE-2008-0460
CWE-707
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0462)
CVE-2008-0462
CWE-707
Medium
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0471)
CVE-2008-0471
CWE-352
Medium
Coppermine Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0504)
CVE-2008-0504
CWE-138
Medium
XOOPS Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-0613)
CVE-2008-0613
CWE-59
Medium
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0615)
CVE-2008-0615
CWE-22
Medium
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0616)
CVE-2008-0616
CWE-138
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0617)
CVE-2008-0617
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0618)
CVE-2008-0618
CWE-707
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-0664)
CVE-2008-0664
CWE-264
Medium
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0788)
CVE-2008-0788
CWE-352
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0828)
CVE-2008-0828
CWE-707
Medium
OpenSSL Numeric Errors Vulnerability (CVE-2008-0891)
CVE-2008-0891
-
Medium
Lighttpd Resource Management Errors Vulnerability (CVE-2008-0983)
CVE-2008-0983
-
Medium
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1111)
CVE-2008-1111
CWE-200
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1133)
CVE-2008-1133
CWE-707
Medium
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-1149)
CVE-2008-1149
CWE-352
Medium
Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1232)
CVE-2008-1232
CWE-707
Medium
Lighttpd Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1270)
CVE-2008-1270
CWE-200
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1304)
CVE-2008-1304
CWE-707
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-1318)
CVE-2008-1318
CWE-200
Medium
PHP Numeric Errors Vulnerability (CVE-2008-1384)
CVE-2008-1384
-
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1385)
CVE-2008-1385
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1386)
CVE-2008-1386
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1502)
CVE-2008-1502
CWE-707
Medium
Lighttpd Other Vulnerability (CVE-2008-1531)
CVE-2008-1531
-
Medium
CubeCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1550)
CVE-2008-1550
CWE-707
Medium
phpMyAdmin Cleartext Storage of Sensitive Information Vulnerability (CVE-2008-1567)
CVE-2008-1567
CWE-312
Medium
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2008-1672)
CVE-2008-1672
CWE-476
Medium
OpenSSL Resource Management Errors Vulnerability (CVE-2008-1678)
CVE-2008-1678
-
Medium
Python Integer Overflow or Wraparound Vulnerability (CVE-2008-1679)
CVE-2008-1679
CWE-190
Medium
Drupal CVE-2008-1729 Vulnerability (CVE-2008-1729)
CVE-2008-1729
-
Medium
Oracle Database Server CVE-2008-1813 Vulnerability (CVE-2008-1813)
CVE-2008-1813
-
Medium
Oracle Database Server CVE-2008-1816 Vulnerability (CVE-2008-1816)
CVE-2008-1816
-
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1888)
CVE-2008-1888
CWE-707
Medium