Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Medium Severity Vulnerabilities

Found 8734 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
Ruby Improper Authentication Vulnerability (CVE-2008-3905)
CVE-2008-3905
CWE-287
Medium
MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963)
CVE-2008-3963
CWE-134
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3966)
CVE-2008-3966
CWE-707
Medium
Oracle Application Server CVE-2008-3975 Vulnerability (CVE-2008-3975)
CVE-2008-3975
-
Medium
Oracle Application Server CVE-2008-3977 Vulnerability (CVE-2008-3977)
CVE-2008-3977
-
Medium
Oracle Application Server CVE-2008-4014 Vulnerability (CVE-2008-4014)
CVE-2008-4014
-
Medium
Oracle Application Server CVE-2008-4017 Vulnerability (CVE-2008-4017)
CVE-2008-4017
-
Medium
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4097)
CVE-2008-4097
CWE-264
Medium
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4098)
CVE-2008-4098
CWE-59
Medium
Joomla Improper Input Validation Vulnerability (CVE-2008-4103)
CVE-2008-4103
CWE-20
Medium
Joomla Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4104)
CVE-2008-4104
CWE-59
Medium
WordPress Improper Input Validation Vulnerability (CVE-2008-4106)
CVE-2008-4106
CWE-20
Medium
PHP Numeric Errors Vulnerability (CVE-2008-4107)
CVE-2008-4107
-
Medium
Joomla Cryptographic Issues Vulnerability (CVE-2008-4122)
CVE-2008-4122
-
Medium
phpBB CVE-2008-4125 Vulnerability (CVE-2008-4125)
CVE-2008-4125
-
Medium
Lighttpd Resource Management Errors Vulnerability (CVE-2008-4298)
CVE-2008-4298
-
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4326)
CVE-2008-4326
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4408)
CVE-2008-4408
CWE-707
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4432)
CVE-2008-4432
CWE-707
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4435)
CVE-2008-4435
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4571)
CVE-2008-4571
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4789)
CVE-2008-4789
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4790)
CVE-2008-4790
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4791)
CVE-2008-4791
CWE-264
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-4792)
CVE-2008-4792
CWE-264
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4928)
CVE-2008-4928
CWE-707
Medium
MyBB Cryptographic Issues Vulnerability (CVE-2008-4929)
CVE-2008-4929
-
Medium
MyBB Improper Input Validation Vulnerability (CVE-2008-4930)
CVE-2008-4930
CWE-20
Medium
OpenSSL Improper Input Validation Vulnerability (CVE-2008-5077)
CVE-2008-5077
CWE-20
Medium
Zope Web Application Server Resource Management Errors Vulnerability (CVE-2008-5102)
CVE-2008-5102
-
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5113)
CVE-2008-5113
CWE-352
Medium
Moodle Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-5153)
CVE-2008-5153
CWE-59
Medium
Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5189)
CVE-2008-5189
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5249)
CVE-2008-5249
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5252)
CVE-2008-5252
CWE-352
Medium
GlassFish Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5266)
CVE-2008-5266
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5278)
CVE-2008-5278
CWE-707
Medium
e107 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5320)
CVE-2008-5320
CWE-138
Medium
PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5335)
CVE-2008-5335
CWE-138
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5432)
CVE-2008-5432
CWE-707
Medium
Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)
CVE-2008-5438
-
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5498)
CVE-2008-5498
CWE-200
Medium
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-5515)
CVE-2008-5515
CWE-22
Medium
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5621)
CVE-2008-5621
CWE-352
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5644)
CVE-2008-5644
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5656)
CVE-2008-5656
CWE-707
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5687)
CVE-2008-5687
CWE-264
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-5688)
CVE-2008-5688
CWE-200
Medium
Python Untrusted Search Path Vulnerability (CVE-2008-5983)
CVE-2008-5983
CWE-426
Medium
Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6065)
CVE-2008-6065
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6125)
CVE-2008-6125
CWE-264
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6208)
CVE-2008-6208
CWE-707
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6503)
CVE-2008-6503
CWE-707
Medium
phpBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6506)
CVE-2008-6506
CWE-264
Medium
phpBB CVE-2008-6507 Vulnerability (CVE-2008-6507)
CVE-2008-6507
-
Medium
Atlassian Jira Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-6531)
CVE-2008-6531
CWE-94
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-6532)
CVE-2008-6532
CWE-352
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6533)
CVE-2008-6533
CWE-707
Medium
Sqlite Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6589)
CVE-2008-6589
CWE-707
Medium
Sqlite Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6590)
CVE-2008-6590
CWE-22
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6699)
CVE-2008-6699
CWE-707
Medium
WordPress Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-6762)
CVE-2008-6762
CWE-59
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6831)
CVE-2008-6831
CWE-707
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-6832)
CVE-2008-6832
CWE-352
Medium
PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6850)
CVE-2008-6850
CWE-707
Medium
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6884)
CVE-2008-6884
CWE-22
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6885)
CVE-2008-6885
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6925)
CVE-2008-6925
CWE-707
Medium
ZenCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6985)
CVE-2008-6985
CWE-138
Medium
ZenCart Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-6986)
CVE-2008-6986
CWE-138
Medium
PHP Improper Input Validation Vulnerability (CVE-2008-7068)
CVE-2008-7068
CWE-20
Medium
WeBid Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7117)
CVE-2008-7117
CWE-264
Medium
WeBid Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7118)
CVE-2008-7118
CWE-264
Medium
phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-7143)
CVE-2008-7143
CWE-200
Medium
Coppermine Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7186)
CVE-2008-7186
CWE-264
Medium