Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Medium Severity Vulnerabilities

Found 8734 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
phpMyFAQ Permission Issues Vulnerability (CVE-2014-6047)
CVE-2014-6047
-
Medium
phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6048)
CVE-2014-6048
CWE-200
Medium
phpMyFAQ 7PK - Security Features Vulnerability (CVE-2014-6050)
CVE-2014-6050
-
Medium
jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6071)
CVE-2014-6071
CWE-707
Medium
IBM RTC Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-6129)
CVE-2014-6129
CWE-264
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6131)
CVE-2014-6131
CWE-200
Medium
Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-6270)
CVE-2014-6270
CWE-119
Medium
Osclass Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6280)
CVE-2014-6280
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6300)
CVE-2014-6300
CWE-707
Medium
Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-6308)
CVE-2014-6308
CWE-22
Medium
Oracle Database Server CVE-2014-6452 Vulnerability (CVE-2014-6452)
CVE-2014-6452
-
Medium
Oracle Database Server CVE-2014-6454 Vulnerability (CVE-2014-6454)
CVE-2014-6454
-
Medium
MySQL CVE-2014-6464 Vulnerability (CVE-2014-6464)
CVE-2014-6464
-
Medium
MySQL CVE-2014-6469 Vulnerability (CVE-2014-6469)
CVE-2014-6469
-
Medium
Oracle Database Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-6477)
CVE-2014-6477
CWE-200
Medium
MySQL CVE-2014-6478 Vulnerability (CVE-2014-6478)
CVE-2014-6478
-
Medium
Oracle Database Server CVE-2014-6483 Vulnerability (CVE-2014-6483)
CVE-2014-6483
-
Medium
MySQL CVE-2014-6484 Vulnerability (CVE-2014-6484)
CVE-2014-6484
-
Medium
MySQL CVE-2014-6489 Vulnerability (CVE-2014-6489)
CVE-2014-6489
-
Medium
MySQL CVE-2014-6494 Vulnerability (CVE-2014-6494)
CVE-2014-6494
-
Medium
MySQL CVE-2014-6495 Vulnerability (CVE-2014-6495)
CVE-2014-6495
-
Medium
MySQL CVE-2014-6496 Vulnerability (CVE-2014-6496)
CVE-2014-6496
-
Medium
MySQL CVE-2014-6505 Vulnerability (CVE-2014-6505)
CVE-2014-6505
-
Medium
MySQL CVE-2014-6507 Vulnerability (CVE-2014-6507)
CVE-2014-6507
-
Medium
Oracle Database Server CVE-2014-6514 Vulnerability (CVE-2014-6514)
CVE-2014-6514
-
Medium
MySQL CVE-2014-6520 Vulnerability (CVE-2014-6520)
CVE-2014-6520
-
Medium
MySQL CVE-2014-6530 Vulnerability (CVE-2014-6530)
CVE-2014-6530
-
Medium
Oracle Database Server CVE-2014-6537 Vulnerability (CVE-2014-6537)
CVE-2014-6537
-
Medium
Oracle Database Server CVE-2014-6538 Vulnerability (CVE-2014-6538)
CVE-2014-6538
-
Medium
Oracle Database Server CVE-2014-6541 Vulnerability (CVE-2014-6541)
CVE-2014-6541
-
Medium
Oracle Database Server CVE-2014-6542 Vulnerability (CVE-2014-6542)
CVE-2014-6542
-
Medium
Oracle Database Server CVE-2014-6547 Vulnerability (CVE-2014-6547)
CVE-2014-6547
-
Medium
MySQL CVE-2014-6555 Vulnerability (CVE-2014-6555)
CVE-2014-6555
-
Medium
MySQL CVE-2014-6559 Vulnerability (CVE-2014-6559)
CVE-2014-6559
-
Medium
Oracle Database Server CVE-2014-6563 Vulnerability (CVE-2014-6563)
CVE-2014-6563
-
Medium
MySQL CVE-2014-6564 Vulnerability (CVE-2014-6564)
CVE-2014-6564
-
Medium
Oracle Database Server CVE-2014-6577 Vulnerability (CVE-2014-6577)
CVE-2014-6577
-
Medium
Oracle Database Server CVE-2014-6578 Vulnerability (CVE-2014-6578)
CVE-2014-6578
-
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-6631)
CVE-2014-6631
CWE-707
Medium
Dolibarr Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-7137)
CVE-2014-7137
CWE-138
Medium
Squid Data Processing Errors Vulnerability (CVE-2014-7141)
CVE-2014-7141
-
Medium
Squid Improper Input Validation Vulnerability (CVE-2014-7142)
CVE-2014-7142
CWE-20
Medium
Python Numeric Errors Vulnerability (CVE-2014-7185)
CVE-2014-7185
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7199)
CVE-2014-7199
CWE-707
Medium
Joomla CVE-2014-7229 Vulnerability (CVE-2014-7229)
CVE-2014-7229
-
Medium
Apache Tomcat Improper Access Control Vulnerability (CVE-2014-7810)
CVE-2014-7810
CWE-284
Medium
Undertow Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7816)
CVE-2014-7816
CWE-22
Medium
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7818)
CVE-2014-7818
CWE-22
Medium
Ruby on Rails Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-7829)
CVE-2014-7829
CWE-22
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7831)
CVE-2014-7831
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7832)
CVE-2014-7832
CWE-264
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7833)
CVE-2014-7833
CWE-200
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7834)
CVE-2014-7834
CWE-264
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-7836)
CVE-2014-7836
CWE-352
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7837)
CVE-2014-7837
CWE-264
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-7838)
CVE-2014-7838
CWE-352
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7846)
CVE-2014-7846
CWE-264
Medium
Moodle Resource Management Errors Vulnerability (CVE-2014-7847)
CVE-2014-7847
-
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7848)
CVE-2014-7848
CWE-200
Medium
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7849)
CVE-2014-7849
CWE-264
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7853)
CVE-2014-7853
CWE-200
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7982)
CVE-2014-7982
CWE-707
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7983)
CVE-2014-7983
CWE-707
Medium
EspoCRM Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7986)
CVE-2014-7986
CWE-264
Medium
EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7987)
CVE-2014-7987
CWE-707
Medium
Ruby Other Vulnerability (CVE-2014-8080)
CVE-2014-8080
-
Medium
Osclass Other Vulnerability (CVE-2014-8085)
CVE-2014-8085
-
Medium
Ruby Other Vulnerability (CVE-2014-8090)
CVE-2014-8090
-
Medium
OpenVPN AS Resource Management Errors Vulnerability (CVE-2014-8104)
CVE-2014-8104
-
Medium
Apache HTTP Server Incorrect Authorization Vulnerability (CVE-2014-8109)
CVE-2014-8109
CWE-863
Medium
PostgreSQL Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2014-8161)
CVE-2014-8161
CWE-209
Medium
MongoDb Improper Authentication Vulnerability (CVE-2014-8180)
CVE-2014-8180
CWE-287
Medium
OpenSSL Cryptographic Issues Vulnerability (CVE-2014-8275)
CVE-2014-8275
-
Medium
YOURLS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8488)
CVE-2014-8488
CWE-707
Medium
MODX Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-8773)
CVE-2014-8773
CWE-352
Medium