Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Medium Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Medium Severity Vulnerabilities
Found
8230 vulnerabilities
at
Medium
severity.
Vulnerability Name
CVE
CWE
Severity
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3837)
CVE-2014-3837
CWE-264
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3838)
CVE-2014-3838
CWE-264
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3900)
CVE-2014-3900
CWE-707
Medium
Ruby on Rails Data Processing Errors Vulnerability (CVE-2014-3916)
CVE-2014-3916
-
Medium
TYPO3 Improper Input Validation Vulnerability (CVE-2014-3941)
CVE-2014-3941
CWE-20
Medium
TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-3942)
CVE-2014-3942
CWE-94
Medium
TYPO3 Improper Authentication Vulnerability (CVE-2014-3944)
CVE-2014-3944
CWE-287
Medium
TYPO3 Improper Authentication Vulnerability (CVE-2014-3945)
CVE-2014-3945
CWE-287
Medium
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3946)
CVE-2014-3946
CWE-200
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3963)
CVE-2014-3963
CWE-264
Medium
MongoDb Improper Input Validation Vulnerability (CVE-2014-3971)
CVE-2014-3971
CWE-20
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3991)
CVE-2014-3991
CWE-707
Medium
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-3992)
CVE-2014-3992
CWE-138
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4049)
CVE-2014-4049
CWE-119
Medium
ASP.NET MVC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-4075)
CVE-2014-4075
CWE-707
Medium
Internet Information Services Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-4078)
CVE-2014-4078
CWE-264
Medium
MySQL CVE-2014-4207 Vulnerability (CVE-2014-4207)
CVE-2014-4207
-
Medium
MySQL CVE-2014-4233 Vulnerability (CVE-2014-4233)
CVE-2014-4233
-
Medium
Oracle Database Server CVE-2014-4236 Vulnerability (CVE-2014-4236)
CVE-2014-4236
-
Medium
Oracle Database Server CVE-2014-4237 Vulnerability (CVE-2014-4237)
CVE-2014-4237
-
Medium
MySQL CVE-2014-4238 Vulnerability (CVE-2014-4238)
CVE-2014-4238
-
Medium
MySQL CVE-2014-4258 Vulnerability (CVE-2014-4258)
CVE-2014-4258
-
Medium
MySQL CVE-2014-4260 Vulnerability (CVE-2014-4260)
CVE-2014-4260
-
Medium
MySQL CVE-2014-4274 Vulnerability (CVE-2014-4274)
CVE-2014-4274
-
Medium
MySQL CVE-2014-4287 Vulnerability (CVE-2014-4287)
CVE-2014-4287
-
Medium
Oracle Database Server CVE-2014-4290 Vulnerability (CVE-2014-4290)
CVE-2014-4290
-
Medium
Oracle Database Server CVE-2014-4291 Vulnerability (CVE-2014-4291)
CVE-2014-4291
-
Medium
Oracle Database Server CVE-2014-4292 Vulnerability (CVE-2014-4292)
CVE-2014-4292
-
Medium
Oracle Database Server CVE-2014-4293 Vulnerability (CVE-2014-4293)
CVE-2014-4293
-
Medium
Oracle Database Server CVE-2014-4294 Vulnerability (CVE-2014-4294)
CVE-2014-4294
-
Medium
Oracle Database Server CVE-2014-4295 Vulnerability (CVE-2014-4295)
CVE-2014-4295
-
Medium
Oracle Database Server CVE-2014-4296 Vulnerability (CVE-2014-4296)
CVE-2014-4296
-
Medium
Oracle Database Server CVE-2014-4297 Vulnerability (CVE-2014-4297)
CVE-2014-4297
-
Medium
Oracle Database Server CVE-2014-4298 Vulnerability (CVE-2014-4298)
CVE-2014-4298
-
Medium
Oracle Database Server CVE-2014-4299 Vulnerability (CVE-2014-4299)
CVE-2014-4299
-
Medium
Oracle Database Server CVE-2014-4300 Vulnerability (CVE-2014-4300)
CVE-2014-4300
-
Medium
Oracle Database Server CVE-2014-4310 Vulnerability (CVE-2014-4310)
CVE-2014-4310
-
Medium
Dolphin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4333)
CVE-2014-4333
CWE-352
Medium
Coppermine Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-4612)
CVE-2014-4612
CWE-707
Medium
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4613)
CVE-2014-4613
CWE-352
Medium
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4614)
CVE-2014-4614
CWE-352
Medium
Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4616)
CVE-2014-4616
CWE-119
Medium
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-4649)
CVE-2014-4649
CWE-138
Medium
Cherokee Improper Authentication Vulnerability (CVE-2014-4668)
CVE-2014-4668
CWE-287
Medium
PHP Other Vulnerability (CVE-2014-4670)
CVE-2014-4670
-
Medium
PHP Other Vulnerability (CVE-2014-4698)
CVE-2014-4698
-
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-4744)
CVE-2014-4744
CWE-707
Medium
ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-4929)
CVE-2014-4929
CWE-22
Medium
Ruby Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-4975)
CVE-2014-4975
CWE-119
Medium
phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-4987)
CVE-2014-4987
CWE-264
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5016)
CVE-2014-5016
CWE-707
Medium
LimeSurvey Other Vulnerability (CVE-2014-5018)
CVE-2014-5018
-
Medium
Drupal Improper Input Validation Vulnerability (CVE-2014-5019)
CVE-2014-5019
CWE-20
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-5020)
CVE-2014-5020
CWE-264
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5022)
CVE-2014-5022
CWE-707
Medium
Omeka Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5100)
CVE-2014-5100
CWE-352
Medium
WeBid Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5101)
CVE-2014-5101
CWE-707
Medium
concrete5 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-5107)
CVE-2014-5107
CWE-200
Medium
concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5108)
CVE-2014-5108
CWE-707
Medium
PHP Improper Input Validation Vulnerability (CVE-2014-5120)
CVE-2014-5120
CWE-20
Medium
OpenSSL Other Vulnerability (CVE-2014-5139)
CVE-2014-5139
-
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5191)
CVE-2014-5191
CWE-707
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5204)
CVE-2014-5204
CWE-352
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5205)
CVE-2014-5205
CWE-352
Medium
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5241)
CVE-2014-5241
CWE-352
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5242)
CVE-2014-5242
CWE-707
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2014-5243)
CVE-2014-5243
CWE-20
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5248)
CVE-2014-5248
CWE-707
Medium
Drupal Resource Management Errors Vulnerability (CVE-2014-5265)
CVE-2014-5265
-
Medium
WordPress Resource Management Errors Vulnerability (CVE-2014-5265)
CVE-2014-5265
-
Medium
Drupal Resource Management Errors Vulnerability (CVE-2014-5266)
CVE-2014-5266
-
Medium
WordPress Resource Management Errors Vulnerability (CVE-2014-5266)
CVE-2014-5266
-
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-5267)
CVE-2014-5267
CWE-264
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5316)
CVE-2014-5316
CWE-707
Medium
DWR Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-5325)
CVE-2014-5325
CWE-200
Medium
« Previous
1
...
41
42
43
44
45
46
47
48
...
110
Next »
