Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Medium Severity Vulnerabilities

Found 8734 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
TYPO3 Improper Input Validation Vulnerability (CVE-2013-4250)
CVE-2013-4250
CWE-20
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4286)
CVE-2013-4286
CWE-20
Medium
Ruby Cryptographic Issues Vulnerability (CVE-2013-4287)
CVE-2013-4287
-
Medium
RubyGems Cryptographic Issues Vulnerability (CVE-2013-4287)
CVE-2013-4287
-
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4301)
CVE-2013-4301
CWE-200
Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4302)
CVE-2013-4302
CWE-264
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4303)
CVE-2013-4303
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4305)
CVE-2013-4305
CWE-707
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-4306)
CVE-2013-4306
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4307)
CVE-2013-4307
CWE-707
Medium
Django Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-4315)
CVE-2013-4315
CWE-22
Medium
TYPO3 Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4320)
CVE-2013-4320
CWE-264
Medium
TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4321)
CVE-2013-4321
CWE-94
Medium
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4322)
CVE-2013-4322
CWE-20
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4341)
CVE-2013-4341
CWE-707
Medium
Apache HTTP Server Other Vulnerability (CVE-2013-4352)
CVE-2013-4352
-
Medium
OpenSSL Improper Input Validation Vulnerability (CVE-2013-4353)
CVE-2013-4353
CWE-20
Medium
Ruby Cryptographic Issues Vulnerability (CVE-2013-4363)
CVE-2013-4363
-
Medium
RubyGems Cryptographic Issues Vulnerability (CVE-2013-4363)
CVE-2013-4363
-
Medium
Ruby on Rails Use of Externally-Controlled Format String Vulnerability (CVE-2013-4389)
CVE-2013-4389
CWE-134
Medium
Apache Tomcat Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4444)
CVE-2013-4444
CWE-94
Medium
Varnish Cache Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-4484)
CVE-2013-4484
CWE-119
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4491)
CVE-2013-4491
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4522)
CVE-2013-4522
CWE-200
Medium
Moodle Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-4524)
CVE-2013-4524
CWE-22
Medium
Lighttpd Use After Free Vulnerability (CVE-2013-4560)
CVE-2013-4560
CWE-416
Medium
MediaWiki Other Vulnerability (CVE-2013-4567)
CVE-2013-4567
-
Medium
MediaWiki Other Vulnerability (CVE-2013-4568)
CVE-2013-4568
-
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4569)
CVE-2013-4569
CWE-200
Medium
MediaWiki Other Vulnerability (CVE-2013-4570)
CVE-2013-4570
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4573)
CVE-2013-4573
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4574)
CVE-2013-4574
CWE-707
Medium
Oracle JRE Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2013-4578)
CVE-2013-4578
CWE-138
Medium
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4590)
CVE-2013-4590
CWE-200
Medium
PHP Numeric Errors Vulnerability (CVE-2013-4635)
CVE-2013-4635
-
Medium
PHP Improper Input Validation Vulnerability (CVE-2013-4636)
CVE-2013-4636
CWE-20
Medium
MongoDb Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4650)
CVE-2013-4650
CWE-264
Medium
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4729)
CVE-2013-4729
CWE-264
Medium
PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4791)
CVE-2013-4791
CWE-707
Medium
PrestaShop Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-4792)
CVE-2013-4792
CWE-352
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4938)
CVE-2013-4938
CWE-264
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4939)
CVE-2013-4939
CWE-707
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4939)
CVE-2013-4939
CWE-707
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4940)
CVE-2013-4940
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4940)
CVE-2013-4940
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4941)
CVE-2013-4941
CWE-707
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4941)
CVE-2013-4941
CWE-707
Medium
YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4942)
CVE-2013-4942
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4942)
CVE-2013-4942
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4996)
CVE-2013-4996
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4997)
CVE-2013-4997
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4998)
CVE-2013-4998
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4999)
CVE-2013-4999
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-5000)
CVE-2013-5000
CWE-200
Medium
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-5003)
CVE-2013-5003
CWE-138
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2013-5029)
CVE-2013-5029
CWE-20
Medium
ASP.NET SignalR Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5042)
CVE-2013-5042
CWE-707
Medium
SharePoint Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5059)
CVE-2013-5059
CWE-94
Medium
easyXDM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5212)
CVE-2013-5212
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5314)
CVE-2013-5314
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5319)
CVE-2013-5319
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5573)
CVE-2013-5573
CWE-707
Medium
Joomla Improper Input Validation Vulnerability (CVE-2013-5576)
CVE-2013-5576
CWE-20
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5583)
CVE-2013-5583
CWE-707
Medium
Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5645)
CVE-2013-5645
CWE-707
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-5670)
CVE-2013-5670
CWE-707
Medium
Oracle HTTP Server CVE-2013-5704 Vulnerability (CVE-2013-5704)
CVE-2013-5704
-
Medium
Apache HTTP Server CVE-2013-5704 Vulnerability (CVE-2013-5704)
CVE-2013-5704
-
Medium
WordPress Improper Input Validation Vulnerability (CVE-2013-5738)
CVE-2013-5738
CWE-20
Medium
MySQL CVE-2013-5767 Vulnerability (CVE-2013-5767)
CVE-2013-5767
-
Medium
Oracle Database Server CVE-2013-5771 Vulnerability (CVE-2013-5771)
CVE-2013-5771
-
Medium
Oracle JRE CVE-2013-5774 Vulnerability (CVE-2013-5774)
CVE-2013-5774
-
Medium
Oracle JRE CVE-2013-5776 Vulnerability (CVE-2013-5776)
CVE-2013-5776
-
Medium
Oracle JRE CVE-2013-5778 Vulnerability (CVE-2013-5778)
CVE-2013-5778
-
Medium
Oracle JRE CVE-2013-5780 Vulnerability (CVE-2013-5780)
CVE-2013-5780
-
Medium