Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Medium Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Medium Severity Vulnerabilities
Found
8230 vulnerabilities
at
Medium
severity.
Vulnerability Name
CVE
CWE
Severity
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1044)
CVE-2018-1044
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1045)
CVE-2018-1045
CWE-707
Medium
Jboss EAP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1047)
CVE-2018-1047
CWE-22
Medium
WildFly Application Server Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1047)
CVE-2018-1047
CWE-22
Medium
PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1052)
CVE-2018-1052
CWE-200
Medium
Undertow Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2018-1067)
CVE-2018-1067
CWE-113
Medium
Jboss EAP Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2018-1067)
CVE-2018-1067
CWE-113
Medium
Moodle CVE-2018-1081 Vulnerability (CVE-2018-1081)
CVE-2018-1081
-
Medium
Moodle Improper Privilege Management Vulnerability (CVE-2018-1134)
CVE-2018-1134
CWE-269
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1135)
CVE-2018-1135
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1136)
CVE-2018-1136
CWE-707
Medium
Squid NULL Pointer Dereference Vulnerability (CVE-2018-1172)
CVE-2018-1172
CWE-476
Medium
WebLogic CVE-2018-1257 Vulnerability (CVE-2018-1257)
CVE-2018-1257
-
Medium
Apache HTTP Server CVE-2018-1283 Vulnerability (CVE-2018-1283)
CVE-2018-1283
-
Medium
Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-1301)
CVE-2018-1301
CWE-119
Medium
Apache HTTP Server NULL Pointer Dereference Vulnerability (CVE-2018-1302)
CVE-2018-1302
CWE-476
Medium
Apache Tomcat CVE-2018-1304 Vulnerability (CVE-2018-1304)
CVE-2018-1304
-
Medium
Jboss EAP CVE-2018-1304 Vulnerability (CVE-2018-1304)
CVE-2018-1304
-
Medium
Apache Tomcat CVE-2018-1305 Vulnerability (CVE-2018-1305)
CVE-2018-1305
-
Medium
WebLogic CVE-2018-1313 Vulnerability (CVE-2018-1313)
CVE-2018-1313
-
Medium
WebLogic Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1324)
CVE-2018-1324
CWE-835
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1394)
CVE-2018-1394
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1407)
CVE-2018-1407
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1408)
CVE-2018-1408
CWE-707
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1423)
CVE-2018-1423
CWE-200
Medium
IBM WebSEAL Improper Authentication Vulnerability (CVE-2018-1443)
CVE-2018-1443
CWE-287
Medium
IBM RTC Session Fixation Vulnerability (CVE-2018-1492)
CVE-2018-1492
CWE-384
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1521)
CVE-2018-1521
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1558)
CVE-2018-1558
CWE-707
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1606)
CVE-2018-1606
CWE-200
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1653)
CVE-2018-1653
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1688)
CVE-2018-1688
CWE-707
Medium
IBM RTC CVE-2018-1694 Vulnerability (CVE-2018-1694)
CVE-2018-1694
-
Medium
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1734)
CVE-2018-1734
CWE-200
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1740)
CVE-2018-1740
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1758)
CVE-2018-1758
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1760)
CVE-2018-1760
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1761)
CVE-2018-1761
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1762)
CVE-2018-1762
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1766)
CVE-2018-1766
CWE-707
Medium
IBM WebSEAL Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-1803)
CVE-2018-1803
CWE-1021
Medium
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1805)
CVE-2018-1805
CWE-200
Medium
IBM WebSEAL CVE-2018-1813 Vulnerability (CVE-2018-1813)
CVE-2018-1813
-
Medium
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1815)
CVE-2018-1815
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1826)
CVE-2018-1826
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1827)
CVE-2018-1827
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1828)
CVE-2018-1828
CWE-707
Medium
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1886)
CVE-2018-1886
CWE-200
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1892)
CVE-2018-1892
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1893)
CVE-2018-1893
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1916)
CVE-2018-1916
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1952)
CVE-2018-1952
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1982)
CVE-2018-1982
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1983)
CVE-2018-1983
CWE-707
Medium
IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1984)
CVE-2018-1984
CWE-707
Medium
Contao CVE-2018-20028 Vulnerability (CVE-2018-20028)
CVE-2018-20028
-
Medium
Podcast Generator Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20121)
CVE-2018-20121
CWE-707
Medium
Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20140)
CVE-2018-20140
CWE-707
Medium
AbanteCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20141)
CVE-2018-20141
CWE-707
Medium
WordPress Incorrect Authorization Vulnerability (CVE-2018-20147)
CVE-2018-20147
CWE-863
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20149)
CVE-2018-20149
CWE-707
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20150)
CVE-2018-20150
CWE-707
Medium
WordPress Improper Input Validation Vulnerability (CVE-2018-20152)
CVE-2018-20152
CWE-20
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20153)
CVE-2018-20153
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20232)
CVE-2018-20232
CWE-707
Medium
Atlassian Confluence Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-20237)
CVE-2018-20237
CWE-200
Medium
Atlassian Confluence Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20239)
CVE-2018-20239
CWE-707
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20239)
CVE-2018-20239
CWE-707
Medium
LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20322)
CVE-2018-20322
CWE-707
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20327)
CVE-2018-20327
CWE-707
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20328)
CVE-2018-20328
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20418)
CVE-2018-20418
CWE-707
Medium
WebERP Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-20420)
CVE-2018-20420
CWE-732
Medium
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20676)
CVE-2018-20676
CWE-707
Medium
Bootstrap Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20677)
CVE-2018-20677
CWE-707
Medium
« Previous
1
...
60
61
62
63
64
65
66
67
...
110
Next »
