Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Medium Severity Vulnerabilities

Found 8734 vulnerabilities at Medium severity.

Vulnerability Name
CVE
CWE
Severity
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32472)
CVE-2021-32472
CWE-200
Medium
Moodle CVE-2021-32473 Vulnerability (CVE-2021-32473)
CVE-2021-32473
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32475)
CVE-2021-32475
CWE-707
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32477)
CVE-2021-32477
CWE-200
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32478)
CVE-2021-32478
CWE-707
Medium
XWiki Incorrect Authorization Vulnerability (CVE-2021-32620)
CVE-2021-32620
CWE-863
Medium
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-32621)
CVE-2021-32621
CWE-94
Medium
Ampache Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32644)
CVE-2021-32644
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32667)
CVE-2021-32667
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32668)
CVE-2021-32668
CWE-707
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32669)
CVE-2021-32669
CWE-707
Medium
XWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-32729)
CVE-2021-32729
CWE-732
Medium
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32730)
CVE-2021-32730
CWE-352
Medium
XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32731)
CVE-2021-32731
CWE-200
Medium
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32732)
CVE-2021-32732
CWE-352
Medium
TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2021-32767)
CVE-2021-32767
CWE-532
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32768)
CVE-2021-32768
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32808)
CVE-2021-32808
CWE-707
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-32809)
CVE-2021-32809
CWE-707
Medium
Chamilo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32925)
CVE-2021-32925
CWE-200
Medium
Apache Tomcat Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2021-33037)
CVE-2021-33037
CWE-444
Medium
Liferay Portal Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-33320)
CVE-2021-33320
CWE-770
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33324)
CVE-2021-33324
CWE-276
Medium
Liferay Portal Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33325)
CVE-2021-33325
CWE-312
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33326)
CVE-2021-33326
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33327)
CVE-2021-33327
CWE-276
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33328)
CVE-2021-33328
CWE-707
Medium
Liferay Portal CVE-2021-33330 Vulnerability (CVE-2021-33330)
CVE-2021-33330
-
Medium
Liferay DXP CVE-2021-33330 Vulnerability (CVE-2021-33330)
CVE-2021-33330
-
Medium
Liferay Portal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-33331)
CVE-2021-33331
CWE-601
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33332)
CVE-2021-33332
CWE-707
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33333)
CVE-2021-33333
CWE-276
Medium
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33334)
CVE-2021-33334
CWE-276
Medium
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2021-33334)
CVE-2021-33334
CWE-276
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33336)
CVE-2021-33336
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33337)
CVE-2021-33337
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33339)
CVE-2021-33339
CWE-707
Medium
CubeCart Session Fixation Vulnerability (CVE-2021-33394)
CVE-2021-33394
CWE-384
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33507)
CVE-2021-33507
CWE-707
Medium
Zope Web Application Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) (CVE-2021-33507)
CVE-2021-33507
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33508)
CVE-2021-33508
CWE-707
Medium
Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33510)
CVE-2021-33510
CWE-918
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33512)
CVE-2021-33512
CWE-707
Medium
Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33513)
CVE-2021-33513
CWE-707
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33618)
CVE-2021-33618
CWE-707
Medium
Squid Improper Input Validation Vulnerability (CVE-2021-33620)
CVE-2021-33620
CWE-20
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33829)
CVE-2021-33829
CWE-707
Medium
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-34429)
CVE-2021-34429
CWE-200
Medium
SharePoint CVE-2021-34517 Vulnerability (CVE-2021-34517)
CVE-2021-34517
-
Medium
Nexus Repository Manager Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-34553)
CVE-2021-34553
CWE-22
Medium
Contao Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35210)
CVE-2021-35210
CWE-707
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35358)
CVE-2021-35358
CWE-707
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35360)
CVE-2021-35360
CWE-707
Medium
Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35361)
CVE-2021-35361
CWE-707
Medium
Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35415)
CVE-2021-35415
CWE-707
Medium
Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-35463)
CVE-2021-35463
CWE-707
Medium
MySQL CVE-2021-35537 Vulnerability (CVE-2021-35537)
CVE-2021-35537
-
Medium
MySQL CVE-2021-35546 Vulnerability (CVE-2021-35546)
CVE-2021-35546
-
Medium
WebLogic CVE-2021-35552 Vulnerability (CVE-2021-35552)
CVE-2021-35552
-
Medium
Oracle JRE CVE-2021-35567 Vulnerability (CVE-2021-35567)
CVE-2021-35567
-
Medium
MySQL CVE-2021-35575 Vulnerability (CVE-2021-35575)
CVE-2021-35575
-
Medium
MySQL CVE-2021-35577 Vulnerability (CVE-2021-35577)
CVE-2021-35577
-
Medium
MySQL CVE-2021-35591 Vulnerability (CVE-2021-35591)
CVE-2021-35591
-
Medium
MySQL CVE-2021-35596 Vulnerability (CVE-2021-35596)
CVE-2021-35596
-
Medium
MySQL CVE-2021-35597 Vulnerability (CVE-2021-35597)
CVE-2021-35597
-
Medium
MySQL CVE-2021-35602 Vulnerability (CVE-2021-35602)
CVE-2021-35602
-
Medium
MySQL CVE-2021-35607 Vulnerability (CVE-2021-35607)
CVE-2021-35607
-
Medium
MySQL CVE-2021-35608 Vulnerability (CVE-2021-35608)
CVE-2021-35608
-
Medium
MySQL CVE-2021-35612 Vulnerability (CVE-2021-35612)
CVE-2021-35612
-
Medium
MySQL CVE-2021-35621 Vulnerability (CVE-2021-35621)
CVE-2021-35621
-
Medium
MySQL CVE-2021-35622 Vulnerability (CVE-2021-35622)
CVE-2021-35622
-
Medium
MySQL CVE-2021-35624 Vulnerability (CVE-2021-35624)
CVE-2021-35624
-
Medium
MySQL CVE-2021-35626 Vulnerability (CVE-2021-35626)
CVE-2021-35626
-
Medium
MySQL CVE-2021-35627 Vulnerability (CVE-2021-35627)
CVE-2021-35627
-
Medium
MySQL CVE-2021-35628 Vulnerability (CVE-2021-35628)
CVE-2021-35628
-
Medium