Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 8102 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
PHP Other Vulnerability (CVE-2007-4528)
CVE-2007-4528
-
Medium
Python Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2007-4559)
CVE-2007-4559
CWE-22
Medium
PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2007-4652)
CVE-2007-4652
CWE-59
Medium
PHP CVE-2007-4670 Vulnerability (CVE-2007-4670)
CVE-2007-4670
-
Medium
Apache Tomcat Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-4724)
CVE-2007-4724
CWE-352
Medium
Lighttpd Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-4727)
CVE-2007-4727
CWE-119
Medium
PostgreSQL Numeric Errors Vulnerability (CVE-2007-4769)
CVE-2007-4769
-
Medium
PostgreSQL Resource Management Errors Vulnerability (CVE-2007-4772)
CVE-2007-4772
-
Medium
PHP Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-4782)
CVE-2007-4782
CWE-94
Medium
PHP Improper Input Validation Vulnerability (CVE-2007-4783)
CVE-2007-4783
CWE-20
Medium
PHP Improper Input Validation Vulnerability (CVE-2007-4784)
CVE-2007-4784
CWE-20
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-4828)
CVE-2007-4828
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2007-4840)
CVE-2007-4840
CWE-20
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-4850)
CVE-2007-4850
CWE-264
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-4883)
CVE-2007-4883
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2007-4887)
CVE-2007-4887
CWE-20
Medium
PHP Other Vulnerability (CVE-2007-4889)
CVE-2007-4889
-
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-4893)
CVE-2007-4893
CWE-352
Medium
Python Integer Overflow or Wraparound Vulnerability (CVE-2007-4965)
CVE-2007-4965
CWE-190
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5000)
CVE-2007-5000
CWE-707
Medium
Oracle HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5000)
CVE-2007-5000
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5105)
CVE-2007-5105
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5106)
CVE-2007-5106
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2007-5128)
CVE-2007-5128
CWE-20
Medium
OpenSSL Numeric Errors Vulnerability (CVE-2007-5135)
CVE-2007-5135
-
Medium
Frontaccounting Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5148)
CVE-2007-5148
CWE-94
Medium
Ruby Improper Authentication Vulnerability (CVE-2007-5162)
CVE-2007-5162
CWE-287
Medium
phpBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5173)
CVE-2007-5173
CWE-94
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5333)
CVE-2007-5333
CWE-200
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5342)
CVE-2007-5342
CWE-264
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5386)
CVE-2007-5386
CWE-707
Medium
Drupal Numeric Errors Vulnerability (CVE-2007-5416)
CVE-2007-5416
-
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5447)
CVE-2007-5447
CWE-264
Medium
Oracle Database Server CVE-2007-5504 Vulnerability (CVE-2007-5504)
CVE-2007-5504
-
Medium
Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-5507)
CVE-2007-5507
CWE-119
Medium
Oracle Database Server Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-5508)
CVE-2007-5508
CWE-138
Medium
Oracle Database Server CVE-2007-5509 Vulnerability (CVE-2007-5509)
CVE-2007-5509
-
Medium
Oracle Database Server CVE-2007-5510 Vulnerability (CVE-2007-5510)
CVE-2007-5510
-
Medium
Oracle Database Server Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-5511)
CVE-2007-5511
CWE-138
Medium
Oracle Database Server Other Vulnerability (CVE-2007-5513)
CVE-2007-5513
-
Medium
Oracle Database Server CVE-2007-5514 Vulnerability (CVE-2007-5514)
CVE-2007-5514
-
Medium
Oracle Database Server CVE-2007-5515 Vulnerability (CVE-2007-5515)
CVE-2007-5515
-
Medium
LimeSurvey Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5573)
CVE-2007-5573
CWE-94
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5577)
CVE-2007-5577
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5589)
CVE-2007-5589
CWE-707
Medium
Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5593)
CVE-2007-5593
CWE-94
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-5594)
CVE-2007-5594
CWE-352
Medium
Drupal Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2007-5595)
CVE-2007-5595
CWE-113
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5596)
CVE-2007-5596
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5597)
CVE-2007-5597
CWE-264
Medium
Ruby Improper Authentication Vulnerability (CVE-2007-5770)
CVE-2007-5770
CWE-287
Medium
PHP CVE-2007-5898 Vulnerability (CVE-2007-5898)
CVE-2007-5898
-
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5899)
CVE-2007-5899
CWE-200
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5900)
CVE-2007-5900
CWE-264
Medium
MySQL Other Vulnerability (CVE-2007-5970)
CVE-2007-5970
-
Medium
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-5976)
CVE-2007-5976
CWE-138
Medium
PostgreSQL Numeric Errors Vulnerability (CVE-2007-6067)
CVE-2007-6067
-
Medium
Ruby on Rails Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2007-6077)
CVE-2007-6077
CWE-362
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6203)
CVE-2007-6203
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6205)
CVE-2007-6205
CWE-707
Medium
Oracle Database Server Credentials Management Errors Vulnerability (CVE-2007-6260)
CVE-2007-6260
-
Medium
Apache Tomcat Other Vulnerability (CVE-2007-6286)
CVE-2007-6286
-
Medium
MySQL Other Vulnerability (CVE-2007-6304)
CVE-2007-6304
-
Medium
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-6318)
CVE-2007-6318
CWE-138
Medium
TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-6381)
CVE-2007-6381
CWE-138
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6388)
CVE-2007-6388
CWE-707
Medium
Apache HTTP Server Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6420)
CVE-2007-6420
CWE-352
Medium
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6422)
CVE-2007-6422
-
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-6514)
CVE-2007-6514
CWE-200
Medium
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-6600)
CVE-2007-6600
CWE-264
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6617)
CVE-2007-6617
CWE-707
Medium
Atlassian Jira Other Vulnerability (CVE-2007-6618)
CVE-2007-6618
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6677)
CVE-2007-6677
CWE-707
Medium
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6750)
CVE-2007-6750
-
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6752)
CVE-2007-6752
CWE-352
Medium