Medium Severity Vulnerabilities

Vulnerability Name	CVE CWE	CWE	Severity
MediaWiki Other Vulnerability (CVE-2012-5391)	CVE-2012-5391		Medium
MediaWiki Other Vulnerability (CVE-2012-5395)	CVE-2012-5395		Medium
MediaWiki Other Vulnerability (CVE-2013-2114)	CVE-2013-2114		Medium
MediaWiki Other Vulnerability (CVE-2013-4567)	CVE-2013-4567		Medium
MediaWiki Other Vulnerability (CVE-2013-4568)	CVE-2013-4568		Medium
MediaWiki Other Vulnerability (CVE-2013-4570)	CVE-2013-4570		Medium
MediaWiki Other Vulnerability (CVE-2020-27621)	CVE-2020-27621		Medium
MediaWiki Other Vulnerability (CVE-2023-37300)	CVE-2023-37300		Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5687)	CVE-2008-5687 CWE-264	CWE-264	Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1190)	CVE-2010-1190 CWE-264	CWE-264	Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1581)	CVE-2012-1581 CWE-264	CWE-264	Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2032)	CVE-2013-2032 CWE-264	CWE-264	Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4302)	CVE-2013-4302 CWE-264	CWE-264	Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9476)	CVE-2014-9476 CWE-264	CWE-264	Medium
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-8004)	CVE-2015-8004 CWE-264	CWE-264	Medium
MediaWiki Resource Management Errors Vulnerability (CVE-2015-6733)	CVE-2015-6733		Medium
MediaWiki Resource Management Errors Vulnerability (CVE-2015-8002)	CVE-2015-8002		Medium
MediaWiki Resource Management Errors Vulnerability (CVE-2015-8003)	CVE-2015-8003		Medium
MediaWiki Uncontrolled Recursion Vulnerability (CVE-2022-28201)	CVE-2022-28201 CWE-674	CWE-674	Medium
MediaWiki Uncontrolled Resource Consumption Vulnerability (CVE-2022-39194)	CVE-2022-39194 CWE-400	CWE-400	Medium
MediaWiki Unquoted Search Path or Element Vulnerability (CVE-2021-31553)	CVE-2021-31553 CWE-428	CWE-428	Medium
MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-0363)	CVE-2017-0363 CWE-601	CWE-601	Medium
MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-0364)	CVE-2017-0364 CWE-601	CWE-601	Medium
MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-19709)	CVE-2019-19709 CWE-601	CWE-601	Medium
MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-10959)	CVE-2020-10959 CWE-601	CWE-601	Medium
MediaWiki Use of Insufficiently Random Values Vulnerability (CVE-2023-22912)	CVE-2023-22912 CWE-330	CWE-330	Medium
Memcached Unauthorized Access Vulnerability	CWE-200	CWE-200	Medium
Mibew Messenger Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0829)	CVE-2012-0829 CWE-352	CWE-352	Medium
Microsoft Access Database File Detected	CWE-538	CWE-538	Medium
Microsoft SQL Server CVE-2023-36728 Vulnerability (CVE-2023-36728)	CVE-2023-36728		Medium
Microsoft SQL Server Improper Input Validation Vulnerability (CVE-1999-0999)	CVE-1999-0999 CWE-20	CWE-20	Medium
Microsoft SQL Server Improper Input Validation Vulnerability (CVE-2001-0509)	CVE-2001-0509 CWE-20	CWE-20	Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-0603)	CVE-2000-0603		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-0654)	CVE-2000-0654		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-1081)	CVE-2000-1081		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-1082)	CVE-2000-1082		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-1084)	CVE-2000-1084		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-1085)	CVE-2000-1085		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-1086)	CVE-2000-1086		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-1087)	CVE-2000-1087		Medium
Microsoft SQL Server Other Vulnerability (CVE-2000-1088)	CVE-2000-1088		Medium
Microsoft SQL Server Other Vulnerability (CVE-2001-0879)	CVE-2001-0879		Medium
Microsoft SQL Server Other Vulnerability (CVE-2002-0224)	CVE-2002-0224		Medium
Microsoft SQL Server Other Vulnerability (CVE-2002-0643)	CVE-2002-0643		Medium
Microsoft SQL Server Other Vulnerability (CVE-2002-1872)	CVE-2002-1872		Medium
Microsoft SQL Server Other Vulnerability (CVE-2003-0231)	CVE-2003-0231		Medium
Microsoft SQL Server Other Vulnerability (CVE-2004-1560)	CVE-2004-1560		Medium
Misconfigured Access-Control-Allow-Origin Header	CWE-942	CWE-942	Medium
MODX Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-8773)	CVE-2014-8773 CWE-352	CWE-352	Medium
MODX Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-8775)	CVE-2014-8775 CWE-200	CWE-200	Medium
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2010-5278)	CVE-2010-5278 CWE-22	CWE-22	Medium
MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-8115)	CVE-2017-8115 CWE-22	CWE-22	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2080)	CVE-2014-2080 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8774)	CVE-2014-8774 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8992)	CVE-2014-8992 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6588)	CVE-2015-6588 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7320)	CVE-2017-7320 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9068)	CVE-2017-9068 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9070)	CVE-2017-9070 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9071)	CVE-2017-9071 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-11744)	CVE-2017-11744 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1000223)	CVE-2017-1000223 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10382)	CVE-2018-10382 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20755)	CVE-2018-20755 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20756)	CVE-2018-20756 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20757)	CVE-2018-20757 CWE-707	CWE-707	Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20758)	CVE-2018-20758 CWE-707	CWE-707	Medium
Mojolicious weak secret key	CWE-693	CWE-693	Medium
Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2016-4055)	CVE-2016-4055 CWE-400	CWE-400	Medium
MongoDb CVE-2024-6384 Vulnerability (CVE-2024-6384)	CVE-2024-6384		Medium
MongoDb Excessive Iteration Vulnerability (CVE-2018-20805)	CVE-2018-20805 CWE-834	CWE-834	Medium
MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494)	CVE-2016-6494 CWE-200	CWE-200	Medium
MongoDb Externally Controlled Reference to a Resource in Another Sphere Vulnerability (CVE-2024-8207)	CVE-2024-8207 CWE-610	CWE-610	Medium
MongoDB HTTP status interface	CWE-200	CWE-200	Medium
MongoDb Improper Authentication Vulnerability (CVE-2014-8180)	CVE-2014-8180 CWE-287	CWE-287	Medium

MediaWiki Other Vulnerability (CVE-2012-5391)

CVE-2012-5391

Medium

MediaWiki Other Vulnerability (CVE-2012-5395)

CVE-2012-5395

Medium

MediaWiki Other Vulnerability (CVE-2013-2114)

CVE-2013-2114

Medium

MediaWiki Other Vulnerability (CVE-2013-4567)

CVE-2013-4567

Medium

MediaWiki Other Vulnerability (CVE-2013-4568)

CVE-2013-4568

Medium

MediaWiki Other Vulnerability (CVE-2013-4570)

CVE-2013-4570

Medium

MediaWiki Other Vulnerability (CVE-2020-27621)

CVE-2020-27621

Medium

MediaWiki Other Vulnerability (CVE-2023-37300)

CVE-2023-37300

Medium

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5687)

CVE-2008-5687

CWE-264

Medium

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1190)

CVE-2010-1190

CWE-264

Medium

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1581)

CVE-2012-1581

CWE-264

Medium

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2032)

CVE-2013-2032

CWE-264

Medium

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4302)

CVE-2013-4302

CWE-264

Medium

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9476)

CVE-2014-9476

CWE-264

Medium

MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-8004)

CVE-2015-8004

CWE-264

Medium

MediaWiki Resource Management Errors Vulnerability (CVE-2015-6733)

CVE-2015-6733

Medium

MediaWiki Resource Management Errors Vulnerability (CVE-2015-8002)

CVE-2015-8002

Medium

MediaWiki Resource Management Errors Vulnerability (CVE-2015-8003)

CVE-2015-8003

Medium

MediaWiki Uncontrolled Recursion Vulnerability (CVE-2022-28201)

CVE-2022-28201

CWE-674

Medium

MediaWiki Uncontrolled Resource Consumption Vulnerability (CVE-2022-39194)

CVE-2022-39194

CWE-400

Medium

MediaWiki Unquoted Search Path or Element Vulnerability (CVE-2021-31553)

CVE-2021-31553

CWE-428

Medium

MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-0363)

CVE-2017-0363

CWE-601

Medium

MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-0364)

CVE-2017-0364

CWE-601

Medium

MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-19709)

CVE-2019-19709

CWE-601

Medium

MediaWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-10959)

CVE-2020-10959

CWE-601

Medium

MediaWiki Use of Insufficiently Random Values Vulnerability (CVE-2023-22912)

CVE-2023-22912

CWE-330

Medium

Memcached Unauthorized Access Vulnerability

CWE-200

Medium

Mibew Messenger Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0829)

CVE-2012-0829

CWE-352

Medium

Microsoft Access Database File Detected

CWE-538

Medium

Microsoft SQL Server CVE-2023-36728 Vulnerability (CVE-2023-36728)

CVE-2023-36728

Medium

Microsoft SQL Server Improper Input Validation Vulnerability (CVE-1999-0999)

CVE-1999-0999

CWE-20

Medium

Microsoft SQL Server Improper Input Validation Vulnerability (CVE-2001-0509)

CVE-2001-0509

CWE-20

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-0603)

CVE-2000-0603

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-0654)

CVE-2000-0654

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-1081)

CVE-2000-1081

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-1082)

CVE-2000-1082

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-1084)

CVE-2000-1084

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-1085)

CVE-2000-1085

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-1086)

CVE-2000-1086

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-1087)

CVE-2000-1087

Medium

Microsoft SQL Server Other Vulnerability (CVE-2000-1088)

CVE-2000-1088

Medium

Microsoft SQL Server Other Vulnerability (CVE-2001-0879)

CVE-2001-0879

Medium

Microsoft SQL Server Other Vulnerability (CVE-2002-0224)

CVE-2002-0224

Medium

Microsoft SQL Server Other Vulnerability (CVE-2002-0643)

CVE-2002-0643

Medium

Microsoft SQL Server Other Vulnerability (CVE-2002-1872)

CVE-2002-1872

Medium

Microsoft SQL Server Other Vulnerability (CVE-2003-0231)

CVE-2003-0231

Medium

Microsoft SQL Server Other Vulnerability (CVE-2004-1560)

CVE-2004-1560

Medium

Misconfigured Access-Control-Allow-Origin Header

CWE-942

Medium

MODX Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-8773)

CVE-2014-8773

CWE-352

Medium

MODX Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-8775)

CVE-2014-8775

CWE-200

Medium

MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2010-5278)

CVE-2010-5278

CWE-22

Medium

MODX Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-8115)

CVE-2017-8115

CWE-22

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2080)

CVE-2014-2080

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8774)

CVE-2014-8774

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8992)

CVE-2014-8992

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6588)

CVE-2015-6588

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7320)

CVE-2017-7320

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9068)

CVE-2017-9068

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9070)

CVE-2017-9070

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9071)

CVE-2017-9071

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-11744)

CVE-2017-11744

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1000223)

CVE-2017-1000223

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10382)

CVE-2018-10382

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20755)

CVE-2018-20755

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20756)

CVE-2018-20756

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20757)

CVE-2018-20757

CWE-707

Medium

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20758)

CVE-2018-20758

CWE-707

Medium

Mojolicious weak secret key

CWE-693

Medium

Moment.js Uncontrolled Resource Consumption Vulnerability (CVE-2016-4055)

CVE-2016-4055

CWE-400

Medium

MongoDb CVE-2024-6384 Vulnerability (CVE-2024-6384)

CVE-2024-6384

Medium

MongoDb Excessive Iteration Vulnerability (CVE-2018-20805)

CVE-2018-20805

CWE-834

Medium

MongoDb Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6494)

CVE-2016-6494

CWE-200

Medium

MongoDb Externally Controlled Reference to a Resource in Another Sphere Vulnerability (CVE-2024-8207)

CVE-2024-8207

CWE-610

Medium

MongoDB HTTP status interface

CWE-200

Medium

MongoDb Improper Authentication Vulnerability (CVE-2014-8180)

CVE-2014-8180

CWE-287

Medium

Severity

Vulnerability Categories

Still Have Questions?

Take action and discover your vulnerabilities