Web Application Vulnerabilities Index

This page lists 144 vulnerabilities categorized as medium severity that can be detected by Invicti.

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Vulnerability Name
Classification
Severity
Reverse Proxy Detected (Apache Traffic Server)
Reverse Proxy Detected (Apache Traffic Server)
Information
Reverse Proxy Detected (Citrix Netscaler)
Reverse Proxy Detected (Citrix Netscaler)
Information
Reverse Proxy Detected (Envoy)
Reverse Proxy Detected (Envoy)
Information
Reverse Proxy Detected (F5 BIG-IP)
Reverse Proxy Detected (F5 BIG-IP)
Information
Reverse Proxy Detected (HAProxy)
Reverse Proxy Detected (HAProxy)
Information
Reverse Proxy Detected (Skipper)
Reverse Proxy Detected (Skipper)
Information
Revive Adserver Detected
Revive Adserver Detected
Information
Revoked SSL Certificate
Revoked SSL Certificate
Medium
Rickshaw Identified
Rickshaw Identified
Information
Rickshaw Identified
Rickshaw Identified
Information
RiotJs Identified
RiotJs Identified
Information
RiotJs Identified
RiotJs Identified
Information
RoR Database Configuration File Detected
RoR Database Configuration File Detected
Low
RoR Development Mode Enabled
RoR Development Mode Enabled
Low
Robots.txt Detected
Robots.txt Detected
Information
Roundcube Detected
Roundcube Detected
Information
Ruby on Rails File Content Disclosure (CVE-2019-5418)
Ruby on Rails File Content Disclosure (CVE-2019-5418)
High
Ruby on Rails Identified
Ruby on Rails Identified
Information
RubyGems Identified
RubyGems Identified
Information
Rukovoditel Detected
Rukovoditel Detected
Information
SAML Consumer Service KeyInfo RetrievalMethod SSRF
SAML Consumer Service KeyInfo RetrievalMethod SSRF
Medium
SAML Consumer Service KeyInfo RetrievalMethod SSRF
SAML Consumer Service KeyInfo RetrievalMethod SSRF
Medium
SAML Consumer Service XSS Vulnerability
SAML Consumer Service XSS Vulnerability
Medium
SAML Consumer Service XSS Vulnerability
SAML Consumer Service XSS Vulnerability
Medium
SAML Response Signature Exclusion
SAML Response Signature Exclusion
High
SAML Response Signature Exclusion
SAML Response Signature Exclusion
High
SAML Response Without Signature
SAML Response Without Signature
High
SAML Response Without Signature
SAML Response Without Signature
High
SQL File Detected
SQL File Detected
Information
SQL Injection
SQL Injection
Critical
SQL Injection (IAST)
SQL Injection (IAST)
Critical
SQLite Database File Found
SQLite Database File Found
Medium
SSL Certificate Is About To Expire
SSL Certificate Is About To Expire
Medium
SSL Certificate Name Hostname Mismatch
SSL Certificate Name Hostname Mismatch
Medium
SSL Untrusted Root Certificate
SSL Untrusted Root Certificate
Medium
SSL/TLS Not Implemented
SSL/TLS Not Implemented
Medium
SVN Detected
SVN Detected
High
SailsJS Identified
SailsJS Identified
Information
SailsJS Identified
SailsJS Identified
Information
SameSite Cookie Not Implemented
SameSite Cookie Not Implemented
Best Practice
SameSite None Cookie Not Marked as Secure
SameSite None Cookie Not Marked as Secure
Best Practice
Scheme URI Detected in Content Security Policy (CSP) Directive
Scheme URI Detected in Content Security Policy (CSP) Directive
Information
ScrollReveal Identified
ScrollReveal Identified
Information
ScrollReveal Identified
ScrollReveal Identified
Information
Security.txt Detected
Security.txt Detected
Information
Select2 Identified
Select2 Identified
Information
Select2 Identified
Select2 Identified
Information
SemanticUI Identified
SemanticUI Identified
Information
SemanticUI Identified
SemanticUI Identified
Information
Sensitive Data Exposure
Sensitive Data Exposure
Medium
Sensitive Data Exposure - Amazon AWS Access Key Id
Sensitive Data Exposure - Amazon AWS Access Key Id
Medium
Sensitive Data Exposure - Amazon AWS Secret Key
Sensitive Data Exposure - Amazon AWS Secret Key
Medium
Sensitive Data Exposure - Amazon MWS Auth Token
Sensitive Data Exposure - Amazon MWS Auth Token
Medium
Sensitive Data Exposure - Amazon SES SMTP Password
Sensitive Data Exposure - Amazon SES SMTP Password
Medium
Sensitive Data Exposure - Consul Token
Sensitive Data Exposure - Consul Token
Medium
Sensitive Data Exposure - Database Connection String - MongoDB - MySQL
Sensitive Data Exposure - Database Connection String - MongoDB - MySQL
Medium
Sensitive Data Exposure - Database Connection String - PostgreSQL
Sensitive Data Exposure - Database Connection String - PostgreSQL
Medium
Sensitive Data Exposure - Devise Secret Key
Sensitive Data Exposure - Devise Secret Key
Medium
Sensitive Data Exposure - Facebook Access Token
Sensitive Data Exposure - Facebook Access Token
Medium
Sensitive Data Exposure - Facebook App ID
Sensitive Data Exposure - Facebook App ID
Medium
Sensitive Data Exposure - Facebook App Secret
Sensitive Data Exposure - Facebook App Secret
Medium
Sensitive Data Exposure - Gitlab Personal Access Token
Sensitive Data Exposure - Gitlab Personal Access Token
Medium
Sensitive Data Exposure - Google Cloud API Key
Sensitive Data Exposure - Google Cloud API Key
Medium
Sensitive Data Exposure - Google OAuth Access Token
Sensitive Data Exposure - Google OAuth Access Token
Medium
Sensitive Data Exposure - Heroku API Key
Sensitive Data Exposure - Heroku API Key
Medium
Sensitive Data Exposure - JDBC Database Connection String
Sensitive Data Exposure - JDBC Database Connection String
Medium
Sensitive Data Exposure - Jenkins Secret
Sensitive Data Exposure - Jenkins Secret
Medium
Sensitive Data Exposure - Jenkins Secret
Sensitive Data Exposure - Jenkins Secret
Medium
Sensitive Data Exposure - LinkedIn API Key
Sensitive Data Exposure - LinkedIn API Key
Medium
Sensitive Data Exposure - MailChimp API Key
Sensitive Data Exposure - MailChimp API Key
Medium
Sensitive Data Exposure - MailGun API Key
Sensitive Data Exposure - MailGun API Key
Medium
Sensitive Data Exposure - Mapbox Token
Sensitive Data Exposure - Mapbox Token
Medium
Sensitive Data Exposure - NPM Access Token
Sensitive Data Exposure - NPM Access Token
Medium
Sensitive Data Exposure - Nexmo Secret
Sensitive Data Exposure - Nexmo Secret
Medium