Web Application Vulnerabilities Index

This page lists 144 vulnerabilities categorized as medium severity that can be detected by Invicti.

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Vulnerability Name
Classification
Severity
Cloudflare Identified
Cloudflare Identified
Information
Collabtive Detected
Collabtive Detected
Information
Concrete5 Detected
Concrete5 Detected
Information
Configuration File Detected
Configuration File Detected
Information
Content Security Policy (CSP) Contains Out of Scope report-uri Domain
Content Security Policy (CSP) Contains Out of Scope report-uri Domain
Information
Content Security Policy (CSP) Keywords Not Used Within Single Quotes
Content Security Policy (CSP) Keywords Not Used Within Single Quotes
Information
Content Security Policy (CSP) Nonce Value Not Used Within Single Quotes
Content Security Policy (CSP) Nonce Value Not Used Within Single Quotes
Information
Content Security Policy (CSP) Nonce Without Matching Script Block
Content Security Policy (CSP) Nonce Without Matching Script Block
Information
Content Security Policy (CSP) report-uri Uses HTTP
Content Security Policy (CSP) report-uri Uses HTTP
Information
Content-Security-Policy-Report-Only Cannot Be Declared Between META Tags
Content-Security-Policy-Report-Only Cannot Be Declared Between META Tags
Information
Content-Security-Policy-Report-Only Cannot Be Declared Without report-uri Directive
Content-Security-Policy-Report-Only Cannot Be Declared Without report-uri Directive
Information
Coppermine Detected
Coppermine Detected
Information
Cowboy HTTP Server Identified
Cowboy HTTP Server Identified
Information
Craft CMS Identified
Craft CMS Identified
Information
Credit Card Disclosure
Credit Card Disclosure
Information
Cross-site Referrer Leakage through usage of no-referrer-when-downgrade in Referrer-Policy
Cross-site Referrer Leakage through usage of no-referrer-when-downgrade in Referrer-Policy
Information
Cross-site Referrer Leakage through usage of origin-when-cross-origin in Referrer-Policy
Cross-site Referrer Leakage through usage of origin-when-cross-origin in Referrer-Policy
Information
Cross-site Referrer Leakage through usage of strict-origin in Referrer-Policy
Cross-site Referrer Leakage through usage of strict-origin in Referrer-Policy
Information
Cross-site Referrer Leakage through usage of strict-origin-when-cross-origin in Referrer-Policy
Cross-site Referrer Leakage through usage of strict-origin-when-cross-origin in Referrer-Policy
Information
Cross-site Referrer Leakage through usage of the origin keyword in Referrer-Policy
Cross-site Referrer Leakage through usage of the origin keyword in Referrer-Policy
Information
Cross-site Referrer Leakage through usage of unsafe-url in Referrer-Policy
Cross-site Referrer Leakage through usage of unsafe-url in Referrer-Policy
Information
Crossdomain.xml Detected
Crossdomain.xml Detected
Information
CrushFTP Server Detected
CrushFTP Server Detected
Information
CubeCart Detected
CubeCart Detected
Information
D3Js Identified
D3Js Identified
Information
Daiquiri Detected
Daiquiri Detected
Information
DataDome Identified
DataDome Identified
Information
DataTables Identified
DataTables Identified
Information
Database Connection String Detected
Database Connection String Detected
Information
Database Detected (HSQLDB)
Database Detected (HSQLDB)
Information
Database Detected (Microsoft Access)
Database Detected (Microsoft Access)
Information
Database Detected (Microsoft SQL Server)
Database Detected (Microsoft SQL Server)
Information
Database Detected (MongoDB)
Database Detected (MongoDB)
Information
Database Detected (MySQL)
Database Detected (MySQL)
Information
Database Detected (Oracle)
Database Detected (Oracle)
Information
Database Detected (PostgreSQL)
Database Detected (PostgreSQL)
Information
Database Detected (SQLite)
Database Detected (SQLite)
Information
DbNinja Detected
DbNinja Detected
Information
Default Page Detected (Apache)
Default Page Detected (Apache)
Information
Default Page Detected (CakePHP Framework)
Default Page Detected (CakePHP Framework)
Information
Default Page Detected (IIS 10.0)
Default Page Detected (IIS 10.0)
Information
Default Page Detected (IIS 6)
Default Page Detected (IIS 6)
Information
Default Page Detected (IIS 7)
Default Page Detected (IIS 7)
Information
Default Page Detected (IIS 7.5)
Default Page Detected (IIS 7.5)
Information
Default Page Detected (IIS 7.X)
Default Page Detected (IIS 7.X)
Information
Default Page Detected (IIS 8)
Default Page Detected (IIS 8)
Information
Default Page Detected (IIS 8.5)
Default Page Detected (IIS 8.5)
Information
Default Page Detected (Tomcat)
Default Page Detected (Tomcat)
Information
Denial of Service (MySQL)
Denial of Service (MySQL)
Information
Deprecated Header Instruction Used to Implement Content Security Policy (CSP)
Deprecated Header Instruction Used to Implement Content Security Policy (CSP)
Information
Digest Authorization Required
Digest Authorization Required
Information
Directory Listing (ASP.NET Server)
Directory Listing (ASP.NET Server)
Information
Directory Listing (Apache)
Directory Listing (Apache)
Information
Directory Listing (IIS)
Directory Listing (IIS)
Information
Directory Listing (Lighttpd)
Directory Listing (Lighttpd)
Information
Directory Listing (LiteSpeed)
Directory Listing (LiteSpeed)
Information
Directory Listing (Nginx)
Directory Listing (Nginx)
Information
Directory Listing (Tomcat)
Directory Listing (Tomcat)
Information
Directory Listing (WebDAV)
Directory Listing (WebDAV)
Information
Disabled X-XSS-Protection Header
Disabled X-XSS-Protection Header
Information
Django Identified
Django Identified
Information
Dojo Identified
Dojo Identified
Information
DokuWiki Detected
DokuWiki Detected
Information
Dolibarr Detected
Dolibarr Detected
Information
Dolphin Detected
Dolphin Detected
Information
DomPurify Identified
DomPurify Identified
Information
DotClear Detected
DotClear Detected
Information
Drupal Detected
Drupal Detected
Information
Dwr Identified
Dwr Identified
Information
EZProxy Identified
EZProxy Identified
Information
EasyXdm Identified
EasyXdm Identified
Information
EfJs Identified
EfJs Identified
Information
Elgg Detected
Elgg Detected
Information
Email Address Disclosure
Email Address Disclosure
Information