🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Medium Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Medium Severity Vulnerabilities
Found
8734 vulnerabilities
at
Medium
severity.
Vulnerability Name
CVE
CWE
Severity
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5908)
CVE-2012-5908
CWE-707
Medium
b2evolution Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-5910)
CVE-2012-5910
CWE-138
Medium
b2evolution Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5911)
CVE-2012-5911
CWE-707
Medium
PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6043)
CVE-2012-6043
CWE-707
Medium
Jenkins Improper Input Validation Vulnerability (CVE-2012-6072)
CVE-2012-6072
CWE-20
Medium
Jenkins Improper Input Validation Vulnerability (CVE-2012-6073)
CVE-2012-6073
CWE-20
Medium
Moodle Improper Input Validation Vulnerability (CVE-2012-6087)
CVE-2012-6087
CWE-20
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6098)
CVE-2012-6098
CWE-264
Medium
Moodle Improper Input Validation Vulnerability (CVE-2012-6099)
CVE-2012-6099
CWE-20
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6100)
CVE-2012-6100
CWE-264
Medium
Moodle Improper Input Validation Vulnerability (CVE-2012-6101)
CVE-2012-6101
CWE-20
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6102)
CVE-2012-6102
CWE-264
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-6103)
CVE-2012-6103
CWE-352
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6104)
CVE-2012-6104
CWE-200
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6105)
CVE-2012-6105
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6106)
CVE-2012-6106
CWE-264
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6112)
CVE-2012-6112
CWE-264
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6113)
CVE-2012-6113
CWE-200
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6121)
CVE-2012-6121
CWE-707
Medium
TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-6144)
CVE-2012-6144
CWE-138
Medium
TYPO3 Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6146)
CVE-2012-6146
CWE-264
Medium
Atlassian Confluence Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-6342)
CVE-2012-6342
CWE-352
Medium
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-6433)
CVE-2012-6433
CWE-352
Medium
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-6434)
CVE-2012-6434
CWE-352
Medium
silverstripeCMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6458)
CVE-2012-6458
CWE-707
Medium
Ruby on Rails Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-6497)
CVE-2012-6497
CWE-200
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6528)
CVE-2012-6528
CWE-707
Medium
Elgg Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6561)
CVE-2012-6561
CWE-707
Medium
Elgg Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6562)
CVE-2012-6562
CWE-264
Medium
Elgg Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6563)
CVE-2012-6563
CWE-264
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2012-6619)
CVE-2012-6619
CWE-20
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6633)
CVE-2012-6633
CWE-707
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6634)
CVE-2012-6634
CWE-264
Medium
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6635)
CVE-2012-6635
CWE-264
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6641)
CVE-2012-6641
CWE-707
Medium
ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6642)
CVE-2012-6642
CWE-707
Medium
ClipBucket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6644)
CVE-2012-6644
CWE-707
Medium
Plone CMS Cryptographic Issues Vulnerability (CVE-2012-6661)
CVE-2012-6661
-
Medium
Zope Web Application Server Cryptographic Issues Vulnerability (CVE-2012-6661)
CVE-2012-6661
-
Medium
jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6708)
CVE-2012-6708
CWE-707
Medium
SharePoint Improper Input Validation Vulnerability (CVE-2013-0081)
CVE-2013-0081
CWE-20
Medium
PleskLin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132)
CVE-2013-0132
CWE-94
Medium
PleskWin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0132)
CVE-2013-0132
CWE-94
Medium
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0155)
CVE-2013-0155
CWE-264
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2013-0166)
CVE-2013-0166
-
Medium
Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-0189)
CVE-2013-0189
CWE-119
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0201)
CVE-2013-0201
CWE-707
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0202)
CVE-2013-0202
CWE-707
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0203)
CVE-2013-0203
CWE-707
Medium
ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0204)
CVE-2013-0204
CWE-94
Medium
Elgg Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0234)
CVE-2013-0234
CWE-707
Medium
WordPress Other Vulnerability (CVE-2013-0235)
CVE-2013-0235
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0236)
CVE-2013-0236
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0237)
CVE-2013-0237
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0246)
CVE-2013-0246
CWE-264
Medium
PostgreSQL Improper Input Validation Vulnerability (CVE-2013-0255)
CVE-2013-0255
CWE-20
Medium
Ruby Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0256)
CVE-2013-0256
CWE-707
Medium
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0276)
CVE-2013-0276
CWE-264
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0298)
CVE-2013-0298
CWE-707
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-0299)
CVE-2013-0299
CWE-352
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-0300)
CVE-2013-0300
CWE-352
Medium
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-0301)
CVE-2013-0301
CWE-352
Medium
ownCloud CVE-2013-0302 Vulnerability (CVE-2013-0302)
CVE-2013-0302
-
Medium
ownCloud CVE-2013-0303 Vulnerability (CVE-2013-0303)
CVE-2013-0303
-
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0304)
CVE-2013-0304
CWE-264
Medium
Django Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-0305)
CVE-2013-0305
CWE-200
Medium
Django Numeric Errors Vulnerability (CVE-2013-0306)
CVE-2013-0306
-
Medium
Drupal Resource Management Errors Vulnerability (CVE-2013-0316)
CVE-2013-0316
-
Medium
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-0327)
CVE-2013-0327
CWE-352
Medium
Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-0328)
CVE-2013-0328
CWE-352
Medium
Jenkins CVE-2013-0330 Vulnerability (CVE-2013-0330)
CVE-2013-0330
-
Medium
Jenkins Improper Input Validation Vulnerability (CVE-2013-0331)
CVE-2013-0331
CWE-20
Medium
Python Improper Restriction of XML External Entity Reference Vulnerability (CVE-2013-0340)
CVE-2013-0340
CWE-611
Medium
MySQL CVE-2013-0367 Vulnerability (CVE-2013-0367)
CVE-2013-0367
-
Medium
MySQL CVE-2013-0368 Vulnerability (CVE-2013-0368)
CVE-2013-0368
-
Medium
« Previous
1
...
32
33
34
35
36
37
38
39
...
117
Next »
