Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Medium Severity Vulnerabilities

Found 8102 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
MySQL CVE-2021-2481 Vulnerability (CVE-2021-2481)
CVE-2021-2481
-
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-30152)
CVE-2021-30152
CWE-732
Medium
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-30153)
CVE-2021-30153
CWE-668
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-30154)
CVE-2021-30154
CWE-707
Medium
MediaWiki Missing Authorization Vulnerability (CVE-2021-30155)
CVE-2021-30155
CWE-862
Medium
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-30156)
CVE-2021-30156
CWE-732
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-30157)
CVE-2021-30157
CWE-707
Medium
MediaWiki Improper Authentication Vulnerability (CVE-2021-30158)
CVE-2021-30158
CWE-287
Medium
MediaWiki CVE-2021-30159 Vulnerability (CVE-2021-30159)
CVE-2021-30159
-
Medium
Nexus Repository Manager Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-30635)
CVE-2021-30635
CWE-22
Medium
Apache Tomcat Improper Encoding or Escaping of Output Vulnerability (CVE-2021-30640)
CVE-2021-30640
CWE-116
Medium
Apache HTTP Server Other Vulnerability (CVE-2021-30641)
CVE-2021-30641
-
Medium
SharePoint CVE-2021-31171 Vulnerability (CVE-2021-31171)
CVE-2021-31171
-
Medium
SharePoint CVE-2021-31172 Vulnerability (CVE-2021-31172)
CVE-2021-31172
-
Medium
SharePoint CVE-2021-31173 Vulnerability (CVE-2021-31173)
CVE-2021-31173
-
Medium
SharePoint CVE-2021-31181 Vulnerability (CVE-2021-31181)
CVE-2021-31181
-
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-31545)
CVE-2021-31545
CWE-200
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-31546)
CVE-2021-31546
CWE-200
Medium
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31547)
CVE-2021-31547
CWE-668
Medium
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31548)
CVE-2021-31548
CWE-668
Medium
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-31549)
CVE-2021-31549
CWE-200
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-31550)
CVE-2021-31550
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-31551)
CVE-2021-31551
CWE-707
Medium
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31552)
CVE-2021-31552
CWE-668
Medium
MediaWiki Unquoted Search Path or Element Vulnerability (CVE-2021-31553)
CVE-2021-31553
CWE-428
Medium
MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31554)
CVE-2021-31554
CWE-668
Medium
Squid Improper Encoding or Escaping of Output Vulnerability (CVE-2021-31806)
CVE-2021-31806
CWE-116
Medium
Squid Integer Overflow or Wraparound Vulnerability (CVE-2021-31807)
CVE-2021-31807
CWE-190
Medium
Squid Improper Input Validation Vulnerability (CVE-2021-31808)
CVE-2021-31808
CWE-20
Medium
Ruby Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-31810)
CVE-2021-31810
CWE-668
Medium
SharePoint CVE-2021-31965 Vulnerability (CVE-2021-31965)
CVE-2021-31965
-
Medium
SharePoint CVE-2021-31966 Vulnerability (CVE-2021-31966)
CVE-2021-31966
-
Medium
PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32028)
CVE-2021-32028
CWE-200
Medium
Jboss EAP CVE-2021-32029 Vulnerability (CVE-2021-32029)
CVE-2021-32029
-
Medium
PostgreSQL CVE-2021-32029 Vulnerability (CVE-2021-32029)
CVE-2021-32029
-
Medium
MongoDb Reachable Assertion Vulnerability (CVE-2021-32037)
CVE-2021-32037
CWE-617
Medium
MongoDb Insufficiently Protected Credentials Vulnerability (CVE-2021-32039)
CVE-2021-32039
CWE-522
Medium
Django Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32052)
CVE-2021-32052
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32244)
CVE-2021-32244
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32470)
CVE-2021-32470
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32472)
CVE-2021-32472
CWE-200
Medium
Moodle CVE-2021-32473 Vulnerability (CVE-2021-32473)
CVE-2021-32473
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32475)
CVE-2021-32475
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32477)
CVE-2021-32477
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32478)
CVE-2021-32478
CWE-707
Medium
XWiki Incorrect Authorization Vulnerability (CVE-2021-32620)
CVE-2021-32620
CWE-863
Medium
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-32621)
CVE-2021-32621
CWE-94
Medium
Ampache Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32644)
CVE-2021-32644
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32667)
CVE-2021-32667
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32668)
CVE-2021-32668
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32669)
CVE-2021-32669
CWE-707
Medium
XWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-32729)
CVE-2021-32729
CWE-732
Medium
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32730)
CVE-2021-32730
CWE-352
Medium
XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32731)
CVE-2021-32731
CWE-200
Medium
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32732)
CVE-2021-32732
CWE-352
Medium
TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2021-32767)
CVE-2021-32767
CWE-532
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32768)
CVE-2021-32768
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32808)
CVE-2021-32808
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32809)
CVE-2021-32809
CWE-707
Medium
Chamilo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32925)
CVE-2021-32925
CWE-200
Medium
Apache Tomcat Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-33037)
CVE-2021-33037
CWE-444
Medium
Liferay Portal Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-33320)
CVE-2021-33320
CWE-770
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33324)
CVE-2021-33324
CWE-276
Medium
Liferay Portal Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33325)
CVE-2021-33325
CWE-312
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33326)
CVE-2021-33326
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33327)
CVE-2021-33327
CWE-276
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33328)
CVE-2021-33328
CWE-707
Medium
Liferay Portal CVE-2021-33330 Vulnerability (CVE-2021-33330)
CVE-2021-33330
-
Medium
Liferay DXP CVE-2021-33330 Vulnerability (CVE-2021-33330)
CVE-2021-33330
-
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-33331)
CVE-2021-33331
CWE-601
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33332)
CVE-2021-33332
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33333)
CVE-2021-33333
CWE-276
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33334)
CVE-2021-33334
CWE-276
Medium
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2021-33334)
CVE-2021-33334
CWE-276
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33336)
CVE-2021-33336
CWE-707
Medium