Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Medium Severity Vulnerabilities

Found 8734 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
MySQL CVE-2016-5630 Vulnerability (CVE-2016-5630)
CVE-2016-5630
-
Medium
MySQL CVE-2016-5631 Vulnerability (CVE-2016-5631)
CVE-2016-5631
-
Medium
MySQL CVE-2016-5632 Vulnerability (CVE-2016-5632)
CVE-2016-5632
-
Medium
MySQL CVE-2016-5633 Vulnerability (CVE-2016-5633)
CVE-2016-5633
-
Medium
MySQL CVE-2016-5634 Vulnerability (CVE-2016-5634)
CVE-2016-5634
-
Medium
MySQL CVE-2016-5635 Vulnerability (CVE-2016-5635)
CVE-2016-5635
-
Medium
Swagger UI Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5682)
CVE-2016-5682
CWE-707
Medium
Python Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2016-5699)
CVE-2016-5699
CWE-113
Medium
phpMyAdmin Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-5701)
CVE-2016-5701
CWE-138
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5704)
CVE-2016-5704
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5705)
CVE-2016-5705
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5730)
CVE-2016-5730
CWE-200
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5731)
CVE-2016-5731
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5732)
CVE-2016-5732
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5733)
CVE-2016-5733
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5833)
CVE-2016-5833
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-5834)
CVE-2016-5834
CWE-707
Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-5876)
CVE-2016-5876
CWE-264
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6024)
CVE-2016-6024
CWE-200
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6035)
CVE-2016-6035
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6037)
CVE-2016-6037
CWE-707
Medium
Sqlite Improper Input Validation Vulnerability (CVE-2016-6153)
CVE-2016-6153
CWE-20
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6186)
CVE-2016-6186
CWE-707
Medium
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-6207)
CVE-2016-6207
CWE-190
Medium
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6212)
CVE-2016-6212
CWE-200
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6283)
CVE-2016-6283
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6285)
CVE-2016-6285
CWE-707
Medium
PHP NULL Pointer Dereference Vulnerability (CVE-2016-6292)
CVE-2016-6292
CWE-476
Medium
OpenSSL Out-of-bounds Read Vulnerability (CVE-2016-6306)
CVE-2016-6306
CWE-125
Medium
OpenSSL Uncontrolled Resource Consumption Vulnerability (CVE-2016-6307)
CVE-2016-6307
CWE-400
Medium
OpenSSL Resource Management Errors Vulnerability (CVE-2016-6308)
CVE-2016-6308
-
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6311)
CVE-2016-6311
CWE-200
Medium
Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6316)
CVE-2016-6316
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6333)
CVE-2016-6333
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6334)
CVE-2016-6334
CWE-707
Medium
MediaWiki Improper Access Control Vulnerability (CVE-2016-6336)
CVE-2016-6336
CWE-284
Medium
MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494)
CVE-2016-6494
CWE-200
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6523)
CVE-2016-6523
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6607)
CVE-2016-6607
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6608)
CVE-2016-6608
CWE-707
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6610)
CVE-2016-6610
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6612)
CVE-2016-6612
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6613)
CVE-2016-6613
CWE-200
Medium
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-6614)
CVE-2016-6614
CWE-22
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6615)
CVE-2016-6615
CWE-707
Medium
phpMyAdmin CVE-2016-6618 Vulnerability (CVE-2016-6618)
CVE-2016-6618
-
Medium
phpMyAdmin Resource Management Errors Vulnerability (CVE-2016-6622)
CVE-2016-6622
-
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-6623)
CVE-2016-6623
CWE-20
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6624)
CVE-2016-6624
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6625)
CVE-2016-6625
CWE-200
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6626)
CVE-2016-6626
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6627)
CVE-2016-6627
CWE-200
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6628)
CVE-2016-6628
-
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-6630)
CVE-2016-6630
CWE-20
Medium
phpMyAdmin Resource Management Errors Vulnerability (CVE-2016-6632)
CVE-2016-6632
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6634)
CVE-2016-6634
CWE-707
Medium
Apache Tomcat CVE-2016-6794 Vulnerability (CVE-2016-6794)
CVE-2016-6794
-
Medium
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6897)
CVE-2016-6897
CWE-352
Medium
Jboss EAP Resource Management Errors Vulnerability (CVE-2016-7046)
CVE-2016-7046
-
Medium
OpenSSL Key Management Errors Vulnerability (CVE-2016-7055)
CVE-2016-7055
-
Medium
OpenSSL Key Management Errors Vulnerability (CVE-2016-7056)
CVE-2016-7056
-
Medium
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7061)
CVE-2016-7061
CWE-200
Medium
JQuery UI Cross-site Scripting (XSS) Vulnerability (CVE-2016-7103)
CVE-2016-7103
-
Medium
WebLogic Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7103)
CVE-2016-7103
CWE-707
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7128)
CVE-2016-7128
CWE-200
Medium
Plone CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-7135)
CVE-2016-7135
CWE-22
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7136)
CVE-2016-7136
CWE-707
Medium
Plone CMS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-7137)
CVE-2016-7137
CWE-601
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7138)
CVE-2016-7138
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7139)
CVE-2016-7139
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7140)
CVE-2016-7140
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7147)
CVE-2016-7147
CWE-707
Medium
b2evolution Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7149)
CVE-2016-7149
CWE-707
Medium
b2evolution Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7150)
CVE-2016-7150
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7168)
CVE-2016-7168
CWE-707
Medium