Web Application Vulnerabilities Index

This page lists 144 vulnerabilities categorized as medium severity that can be detected by Invicti.

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Vulnerability Name
Classification
Severity
DataDome Identified
DataDome Identified
Information
DataTables Identified
DataTables Identified
Information
DataTables Identified
DataTables Identified
Information
Database Connection String Detected
Database Connection String Detected
Information
Database Detected (HSQLDB)
Database Detected (HSQLDB)
Information
Database Detected (Microsoft Access)
Database Detected (Microsoft Access)
Information
Database Detected (Microsoft SQL Server)
Database Detected (Microsoft SQL Server)
Information
Database Detected (MongoDB)
Database Detected (MongoDB)
Information
Database Detected (MySQL)
Database Detected (MySQL)
Information
Database Detected (Oracle)
Database Detected (Oracle)
Information
Database Detected (PostgreSQL)
Database Detected (PostgreSQL)
Information
Database Detected (SQLite)
Database Detected (SQLite)
Information
Database Detected (SQLite)
Database Detected (SQLite)
Information
Database Error Message Disclosure
Database Error Message Disclosure
Low
Database Name Disclosure (Microsoft SQL Server)
Database Name Disclosure (Microsoft SQL Server)
Low
Database Name Disclosure (MySQL)
Database Name Disclosure (MySQL)
Low
Database User Has Admin Privileges
Database User Has Admin Privileges
High
DbNinja Detected
DbNinja Detected
Information
Default Page Detected (Apache)
Default Page Detected (Apache)
Information
Default Page Detected (CakePHP Framework)
Default Page Detected (CakePHP Framework)
Information
Default Page Detected (IIS 10.0)
Default Page Detected (IIS 10.0)
Information
Default Page Detected (IIS 6)
Default Page Detected (IIS 6)
Information
Default Page Detected (IIS 7)
Default Page Detected (IIS 7)
Information
Default Page Detected (IIS 7.5)
Default Page Detected (IIS 7.5)
Information
Default Page Detected (IIS 7.X)
Default Page Detected (IIS 7.X)
Information
Default Page Detected (IIS 8)
Default Page Detected (IIS 8)
Information
Default Page Detected (IIS 8.5)
Default Page Detected (IIS 8.5)
Information
Default Page Detected (Tomcat)
Default Page Detected (Tomcat)
Information
Denial of Service (MySQL)
Denial of Service (MySQL)
Information
Deprecated Header Instruction Used to Implement Content Security Policy (CSP)
Deprecated Header Instruction Used to Implement Content Security Policy (CSP)
Information
Digest Authorization Required
Digest Authorization Required
Information
Directory Listing (ASP.NET Server)
Directory Listing (ASP.NET Server)
Information
Directory Listing (Apache)
Directory Listing (Apache)
Information
Directory Listing (IIS)
Directory Listing (IIS)
Information
Directory Listing (Lighttpd)
Directory Listing (Lighttpd)
Information
Directory Listing (LiteSpeed)
Directory Listing (LiteSpeed)
Information
Directory Listing (Nginx)
Directory Listing (Nginx)
Information
Directory Listing (Tomcat)
Directory Listing (Tomcat)
Information
Directory Listing (WebDAV)
Directory Listing (WebDAV)
Information
Disabled X-XSS-Protection Header
Disabled X-XSS-Protection Header
Information
Disabled X-XSS-Protection Header
Disabled X-XSS-Protection Header
Information
Django Debug Mode Enabled
Django Debug Mode Enabled
Low
Django Identified
Django Identified
Information
Docker Cloud Stack File Detected
Docker Cloud Stack File Detected
Low
Docker Cloud Stack File Detected
Docker Cloud Stack File Detected
Low
Docker Compose File Detected
Docker Compose File Detected
Low
Docker Compose File Detected
Docker Compose File Detected
Low
Dockerfile Detected
Dockerfile Detected
Low
Dockerfile Detected
Dockerfile Detected
Low
Dojo Identified
Dojo Identified
Information
Dojo Identified
Dojo Identified
Information
DokuWiki Detected
DokuWiki Detected
Information
Dolibarr Detected
Dolibarr Detected
Information
Dolphin Detected
Dolphin Detected
Information
DomPurify Identified
DomPurify Identified
Information
DomPurify Identified
DomPurify Identified
Information
DotClear Detected
DotClear Detected
Information
Drupal Core - Remote Code Execution (CVE-2019-6340)
Drupal Core - Remote Code Execution (CVE-2019-6340)
Critical
Drupal Detected
Drupal Detected
Information
Dwr Identified
Dwr Identified
Information
Dwr Identified
Dwr Identified
Information
EZProxy Identified
EZProxy Identified
Information
EZProxy Identified
EZProxy Identified
Information
EasyXdm Identified
EasyXdm Identified
Information
EasyXdm Identified
EasyXdm Identified
Information
EfJs Identified
EfJs Identified
Information
EfJs Identified
EfJs Identified
Information
Elgg Detected
Elgg Detected
Information
Elmah.axd / Errorlog.axd Detected
Elmah.axd / Errorlog.axd Detected
High
Email Address Disclosure
Email Address Disclosure
Information
Ember Identified
Ember Identified
Information
Ember Identified
Ember Identified
Information
Error-Based MongoDB Injection
Error-Based MongoDB Injection
High
EspoCRM Detected
EspoCRM Detected
Information