🚀 Just released:
Latio 2026 Application Security Market Report.
Read it in our Whitepapers.
100% Signal 0% Noise
Platform
Invicti Platform
Zero-noise AppSec platform
Scan Code
Secure code before runtime
SAST
Early static security analysis
Open Source (SCA)
Find vulnerable dependencies
SBOM & License Risk
Generate SBOMs and track licenses
Secrets
Detect exposed secrets in applications
Infrastructure as Code
Ingest IaC security findings
Container
Track container image vulnerabilities
Test Runtime
Test live applications like attackers
DAST & AI DAST
Test runtime, prove exploitability
Agentic Pentesting
Automate real-world attack techniques
API Security Testing
Discover and test APIs
Attack Surface Management
Identify exposed apps and endpoints
Cloud AppSec
Get a single-pane view of cloud app risk
AI AppSec
Scan smarter, accelerate remediation
Manage Vulnerabilities
See, prioritize, reduce AppSec risk
Vulnerability Management (ASPM)
Centralize and correlate AppSec findings
Compliance & Executive Reporting
Measure risk and impact
Threat Intelligence
Reachability, exploitability, and business logic
Solutions
API Discovery
Manage Vulnerabilities
Automate Security Workflows
Track AppSec KPIs
Manage Open Source Risk
Pricing
Why Invicti
About Us
Case Studies
Contact Us
Careers
Resources
Resource Library
Blog
Webinars
White Papers
Podcasts
Invicti Learn
Savings Calculator
Live Training
Partners
Documentation
Get a demo
Home
/
Web Application Vulnerabilities
/ Medium Severity
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
v.26.4.2314
Medium Severity Vulnerabilities
Found
8734 vulnerabilities
at
Medium
severity.
Vulnerability Name
CVE
CWE
Severity
MySQL CVE-2023-22059 Vulnerability (CVE-2023-22059)
CVE-2023-22059
-
Medium
MySQL CVE-2023-22064 Vulnerability (CVE-2023-22064)
CVE-2023-22064
-
Medium
MySQL CVE-2023-22065 Vulnerability (CVE-2023-22065)
CVE-2023-22065
-
Medium
MySQL CVE-2023-22066 Vulnerability (CVE-2023-22066)
CVE-2023-22066
-
Medium
MySQL CVE-2023-22068 Vulnerability (CVE-2023-22068)
CVE-2023-22068
-
Medium
MySQL CVE-2023-22070 Vulnerability (CVE-2023-22070)
CVE-2023-22070
-
Medium
Oracle Database Server CVE-2023-22071 Vulnerability (CVE-2023-22071)
CVE-2023-22071
-
Medium
Oracle Database Server CVE-2023-22073 Vulnerability (CVE-2023-22073)
CVE-2023-22073
-
Medium
Oracle Database Server CVE-2023-22077 Vulnerability (CVE-2023-22077)
CVE-2023-22077
-
Medium
MySQL CVE-2023-22078 Vulnerability (CVE-2023-22078)
CVE-2023-22078
-
Medium
MySQL CVE-2023-22079 Vulnerability (CVE-2023-22079)
CVE-2023-22079
-
Medium
Oracle JRE CVE-2023-22081 Vulnerability (CVE-2023-22081)
CVE-2023-22081
-
Medium
MySQL CVE-2023-22084 Vulnerability (CVE-2023-22084)
CVE-2023-22084
-
Medium
MySQL CVE-2023-22092 Vulnerability (CVE-2023-22092)
CVE-2023-22092
-
Medium
MySQL CVE-2023-22095 Vulnerability (CVE-2023-22095)
CVE-2023-22095
-
Medium
Oracle Database Server CVE-2023-22096 Vulnerability (CVE-2023-22096)
CVE-2023-22096
-
Medium
MySQL CVE-2023-22097 Vulnerability (CVE-2023-22097)
CVE-2023-22097
-
Medium
MySQL CVE-2023-22103 Vulnerability (CVE-2023-22103)
CVE-2023-22103
-
Medium
MySQL CVE-2023-22104 Vulnerability (CVE-2023-22104)
CVE-2023-22104
-
Medium
MySQL CVE-2023-22110 Vulnerability (CVE-2023-22110)
CVE-2023-22110
-
Medium
MySQL CVE-2023-22111 Vulnerability (CVE-2023-22111)
CVE-2023-22111
-
Medium
MySQL CVE-2023-22112 Vulnerability (CVE-2023-22112)
CVE-2023-22112
-
Medium
MySQL CVE-2023-22114 Vulnerability (CVE-2023-22114)
CVE-2023-22114
-
Medium
MySQL CVE-2023-22115 Vulnerability (CVE-2023-22115)
CVE-2023-22115
-
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-22462)
CVE-2023-22462
CWE-707
Medium
Atlassian Confluence CVE-2023-22503 Vulnerability (CVE-2023-22503)
CVE-2023-22503
-
Medium
Atlassian Confluence Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-22504)
CVE-2023-22504
CWE-434
Medium
Ruby on Rails URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-22797)
CVE-2023-22797
CWE-601
Medium
MediaWiki CVE-2023-22909 Vulnerability (CVE-2023-22909)
CVE-2023-22909
-
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-22910)
CVE-2023-22910
CWE-707
Medium
MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-22911)
CVE-2023-22911
CWE-707
Medium
MediaWiki Use of Insufficiently Random Values Vulnerability (CVE-2023-22912)
CVE-2023-22912
CWE-330
Medium
MediaWiki Incorrect Authorization Vulnerability (CVE-2023-22945)
CVE-2023-22945
CWE-863
Medium
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-23750)
CVE-2023-23750
CWE-352
Medium
Joomla Incorrect Authorization Vulnerability (CVE-2023-23751)
CVE-2023-23751
CWE-863
Medium
Joomla Other Vulnerability (CVE-2023-23752)
CVE-2023-23752
-
Medium
Joomla URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-23754)
CVE-2023-23754
CWE-601
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-23921)
CVE-2023-23921
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-23922)
CVE-2023-23922
CWE-707
Medium
Craft CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-23927)
CVE-2023-23927
CWE-707
Medium
ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-23948)
CVE-2023-23948
CWE-138
Medium
PleskLin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-24044)
CVE-2023-24044
CWE-601
Medium
PleskWin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-24044)
CVE-2023-24044
CWE-601
Medium
ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-24804)
CVE-2023-24804
CWE-22
Medium
TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-24814)
CVE-2023-24814
CWE-707
Medium
SharePoint CVE-2023-24950 Vulnerability (CVE-2023-24950)
CVE-2023-24950
-
Medium
SharePoint CVE-2023-24954 Vulnerability (CVE-2023-24954)
CVE-2023-24954
-
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-25727)
CVE-2023-25727
CWE-707
Medium
Jetty Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-26048)
CVE-2023-26048
CWE-770
Medium
Jetty CVE-2023-26049 Vulnerability (CVE-2023-26049)
CVE-2023-26049
-
Medium
XWiki Incorrect Authorization Vulnerability (CVE-2023-26056)
CVE-2023-26056
CWE-863
Medium
AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2023-26116)
CVE-2023-26116
CWE-1333
Medium
AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2023-26117)
CVE-2023-26117
CWE-1333
Medium
AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2023-26118)
CVE-2023-26118
CWE-1333
Medium
Pega Infinity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-26465)
CVE-2023-26465
CWE-707
Medium
XWiki CVE-2023-26473 Vulnerability (CVE-2023-26473)
CVE-2023-26473
-
Medium
XWiki Improper Handling of Exceptional Conditions Vulnerability (CVE-2023-26479)
CVE-2023-26479
CWE-755
Medium
XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-26480)
CVE-2023-26480
CWE-707
Medium
ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27008)
CVE-2023-27008
CWE-707
Medium
Python Improper Input Validation Vulnerability (CVE-2023-27043)
CVE-2023-27043
CWE-20
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27148)
CVE-2023-27148
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27149)
CVE-2023-27149
CWE-707
Medium
Envoy Proxy Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-27492)
CVE-2023-27492
CWE-770
Medium
phpList CVE-2023-27576 Vulnerability (CVE-2023-27576)
CVE-2023-27576
-
Medium
easyXDM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-27739)
CVE-2023-27739
CWE-707
Medium
Jenkins CVE-2023-27902 Vulnerability (CVE-2023-27902)
CVE-2023-27902
-
Medium
Jenkins Incorrect Authorization Vulnerability (CVE-2023-27903)
CVE-2023-27903
CWE-863
Medium
Jenkins CVE-2023-27904 Vulnerability (CVE-2023-27904)
CVE-2023-27904
-
Medium
Moodle CVE-2023-28330 Vulnerability (CVE-2023-28330)
CVE-2023-28330
-
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-28331)
CVE-2023-28331
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-28332)
CVE-2023-28332
CWE-707
Medium
Moodle Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2023-28334)
CVE-2023-28334
CWE-639
Medium
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-28336)
CVE-2023-28336
CWE-668
Medium
Tornado URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-28370)
CVE-2023-28370
CWE-601
Medium
CKEditor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-28439)
CVE-2023-28439
CWE-707
Medium
« Previous
1
...
96
97
98
99
100
101
102
103
...
117
Next »
