Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Medium Severity Vulnerabilities

Found 8734 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-7169)
CVE-2016-7169
CWE-22
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7419)
CVE-2016-7419
CWE-707
Medium
MySQL CVE-2016-7440 Vulnerability (CVE-2016-7440)
CVE-2016-7440
-
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-7570)
CVE-2016-7570
CWE-264
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7571)
CVE-2016-7571
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-7572)
CVE-2016-7572
CWE-264
Medium
MySQL CVE-2016-8283 Vulnerability (CVE-2016-8283)
CVE-2016-8283
-
Medium
MySQL CVE-2016-8287 Vulnerability (CVE-2016-8287)
CVE-2016-8287
-
Medium
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8289)
CVE-2016-8289
CWE-264
Medium
MySQL CVE-2016-8290 Vulnerability (CVE-2016-8290)
CVE-2016-8290
-
Medium
MySQL CVE-2016-8318 Vulnerability (CVE-2016-8318)
CVE-2016-8318
-
Medium
MySQL CVE-2016-8327 Vulnerability (CVE-2016-8327)
CVE-2016-8327
-
Medium
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2016-8612)
CVE-2016-8612
CWE-20
Medium
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2016-8627)
CVE-2016-8627
CWE-400
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-8642)
CVE-2016-8642
CWE-284
Medium
Moodle Improper Access Control Vulnerability (CVE-2016-8643)
CVE-2016-8643
CWE-284
Medium
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8644)
CVE-2016-8644
CWE-264
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9126)
CVE-2016-9126
CWE-707
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9128)
CVE-2016-9128
CWE-707
Medium
ReviveAdserver Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9129)
CVE-2016-9129
CWE-200
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9130)
CVE-2016-9130
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9188)
CVE-2016-9188
CWE-707
Medium
WordPress Improper Input Validation Vulnerability (CVE-2016-9263)
CVE-2016-9263
CWE-20
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9404)
CVE-2016-9404
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9405)
CVE-2016-9405
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9406)
CVE-2016-9406
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9407)
CVE-2016-9407
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9408)
CVE-2016-9408
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9409)
CVE-2016-9409
CWE-707
Medium
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9411)
CVE-2016-9411
CWE-200
Medium
MyBB Improper Access Control Vulnerability (CVE-2016-9413)
CVE-2016-9413
CWE-284
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9419)
CVE-2016-9419
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9421)
CVE-2016-9421
CWE-707
Medium
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9449)
CVE-2016-9449
CWE-200
Medium
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2016-9451)
CVE-2016-9451
CWE-601
Medium
Drupal Improper Input Validation Vulnerability (CVE-2016-9452)
CVE-2016-9452
CWE-20
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9454)
CVE-2016-9454
CWE-707
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9457)
CVE-2016-9457
CWE-707
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9459)
CVE-2016-9459
CWE-707
Medium
ownCloud Improper Access Control Vulnerability (CVE-2016-9460)
CVE-2016-9460
CWE-284
Medium
ownCloud Improper Access Control Vulnerability (CVE-2016-9461)
CVE-2016-9461
CWE-284
Medium
ownCloud Improper Access Control Vulnerability (CVE-2016-9462)
CVE-2016-9462
CWE-284
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9465)
CVE-2016-9465
CWE-707
Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9466)
CVE-2016-9466
CWE-707
Medium
ownCloud Improper Access Control Vulnerability (CVE-2016-9467)
CVE-2016-9467
CWE-284
Medium
ownCloud Improper Access Control Vulnerability (CVE-2016-9468)
CVE-2016-9468
CWE-284
Medium
ReviveAdserver Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9472)
CVE-2016-9472
CWE-707
Medium
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-9585)
CVE-2016-9585
CWE-502
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9681)
CVE-2016-9681
CWE-707
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9700)
CVE-2016-9700
CWE-200
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9701)
CVE-2016-9701
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9733)
CVE-2016-9733
CWE-707
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9735)
CVE-2016-9735
CWE-200
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9746)
CVE-2016-9746
CWE-707
Medium
Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9751)
CVE-2016-9751
CWE-707
Medium
phpMyAdmin Cryptographic Issues Vulnerability (CVE-2016-9847)
CVE-2016-9847
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9848)
CVE-2016-9848
CWE-200
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9850)
CVE-2016-9850
-
Medium
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9851)
CVE-2016-9851
-
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9852)
CVE-2016-9852
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9853)
CVE-2016-9853
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9854)
CVE-2016-9854
CWE-200
Medium
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9855)
CVE-2016-9855
CWE-200
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9856)
CVE-2016-9856
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9857)
CVE-2016-9857
CWE-707
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-9858)
CVE-2016-9858
CWE-20
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-9859)
CVE-2016-9859
CWE-20
Medium
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-9860)
CVE-2016-9860
CWE-20
Medium
Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9891)
CVE-2016-9891
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9973)
CVE-2016-9973
CWE-707
Medium
ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0256)
CVE-2017-0256
CWE-20
Medium
MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-0363)
CVE-2017-0363
CWE-601
Medium
MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-0364)
CVE-2017-0364
CWE-601
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-0365)
CVE-2017-0365
CWE-707
Medium
MediaWiki Improper Input Validation Vulnerability (CVE-2017-0366)
CVE-2017-0366
CWE-20
Medium