Web Application Vulnerabilities Index

This page lists 144 vulnerabilities categorized as medium severity that can be detected by Invicti.

Select Category
Critical
High
Medium
Low
Best Practice
Information
Select Vulnerability
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Vulnerability Name
Classification
Severity
Ember Identified
Ember Identified
Information
EspoCRM Detected
EspoCRM Detected
Information
Expect-CT Header via HTTP
Expect-CT Header via HTTP
Information
Expect-CT Security Header Errors and Warnings
Expect-CT Security Header Errors and Warnings
Information
Expect-CT in Report Only Mode
Expect-CT in Report Only Mode
Information
ExpressJS Identified
ExpressJS Identified
Information
ExtJs Identified
ExtJs Identified
Information
FabricJs Identified
FabricJs Identified
Information
Family Connections Detected
Family Connections Detected
Information
FancyBox Identified
FancyBox Identified
Information
File Upload Functionality Detected
File Upload Functionality Detected
Information
Fingerprintjs2 Identified
Fingerprintjs2 Identified
Information
Flickity Identified
Flickity Identified
Information
FluxBB Detected
FluxBB Detected
Information
Footablejs Identified
Footablejs Identified
Information
Forbidden Resource
Forbidden Resource
Information
Form Tools Detected
Form Tools Detected
Information
Foundation Identified
Foundation Identified
Information
Front Accounting Detected
Front Accounting Detected
Information
FrontPage Identified
FrontPage Identified
Information
FuelUx Identified
FuelUx Identified
Information
Generic Email Address Disclosure
Generic Email Address Disclosure
Information
GeoServer Identified
GeoServer Identified
Information
GibbonEdu Detected
GibbonEdu Detected
Information
GlassFish Server Identified
GlassFish Server Identified
Information
Google Tag Manager Identified
Google Tag Manager Identified
Information
Grafana Identified
Grafana Identified
Information
GraphQL Endpoint Detected
GraphQL Endpoint Detected
Information
GraphQL Library Detected (Apollo)
GraphQL Library Detected (Apollo)
Information
GraphQL Library Detected (Ariadne)
GraphQL Library Detected (Ariadne)
Information
GraphQL Library Detected (Dgraph)
GraphQL Library Detected (Dgraph)
Information
GraphQL Library Detected (Diana.jl)
GraphQL Library Detected (Diana.jl)
Information
GraphQL Library Detected (Directus)
GraphQL Library Detected (Directus)
Information
GraphQL Library Detected (GqlGen)
GraphQL Library Detected (GqlGen)
Information
GraphQL Library Detected (GraphQL API for Wordpress)
GraphQL Library Detected (GraphQL API for Wordpress)
Information
GraphQL Library Detected (Graphene)
GraphQL Library Detected (Graphene)
Information
GraphQL Library Detected (Graphql-Go)
GraphQL Library Detected (Graphql-Go)
Information
GraphQL Library Detected (Hasura)
GraphQL Library Detected (Hasura)
Information
GraphQL Library Detected (Hot Chocolate)
GraphQL Library Detected (Hot Chocolate)
Information
GraphQL Library Detected (Juniper)
GraphQL Library Detected (Juniper)
Information
GraphQL Library Detected (Ruby-graphql)
GraphQL Library Detected (Ruby-graphql)
Information
GraphQL Library Detected (Sangria)
GraphQL Library Detected (Sangria)
Information
GraphQL Library Detected (Tartiflette)
GraphQL Library Detected (Tartiflette)
Information
GraphQL Library Detected (WPGraphQL)
GraphQL Library Detected (WPGraphQL)
Information
GraphQL Library Detected (graphql-java)
GraphQL Library Detected (graphql-java)
Information
GraphQL Library Detected (graphql-php)
GraphQL Library Detected (graphql-php)
Information
Gsap Identified
Gsap Identified
Information
Gunicorn Python WSGI HTTP Server Identified
Gunicorn Python WSGI HTTP Server Identified
Information
HTTP Strict Transport Security (HSTS) Max-Age Value Too Low
HTTP Strict Transport Security (HSTS) Max-Age Value Too Low
Information
HTTP Strict Transport Security (HSTS) via HTTP
HTTP Strict Transport Security (HSTS) via HTTP
Information
Hammerjs Identified
Hammerjs Identified
Information
Handlebarsjs Identified
Handlebarsjs Identified
Information
Hesk Detected
Hesk Detected
Information
Hiawatha Identified
Hiawatha Identified
Information
Highcharts Identified
Highcharts Identified
Information
Html5Shiv Identified
Html5Shiv Identified
Information
HubSpot Identified
HubSpot Identified
Information
I'm a Teapot
I'm a Teapot
Information
IBM Business Process Manager (BPM) Identified
IBM Business Process Manager (BPM) Identified
Information
IBM HTTP Server Identified
IBM HTTP Server Identified
Information
IBM Rational Team Concert (RTC) Identified
IBM Rational Team Concert (RTC) Identified
Information
IBM Security Access Manager (WebSEAL) Identified
IBM Security Access Manager (WebSEAL) Identified
Information
IIS Identified
IIS Identified
Information
ImagePicker Identified
ImagePicker Identified
Information
Incorrect Content Security Policy (CSP) Implementation
Incorrect Content Security Policy (CSP) Implementation
Information
Inferno Identified
Inferno Identified
Information
Insecure Protocol Detected in Content Security Policy (CSP)
Insecure Protocol Detected in Content Security Policy (CSP)
Information
Insecure Usage of Version 1 GUID
Insecure Usage of Version 1 GUID
Information
Installation File Detected
Installation File Detected
Information
Intermediate Certificate is Signed Using a Weak Signature Algorithm
Intermediate Certificate is Signed Using a Weak Signature Algorithm
Information
Internal Path Disclosure (*nix)
Internal Path Disclosure (*nix)
Information
Internal Path Disclosure (Windows)
Internal Path Disclosure (Windows)
Information
Introjs Identified
Introjs Identified
Information
Invalid Content Security Policy (CSP) Directive Identified in meta Elements
Invalid Content Security Policy (CSP) Directive Identified in meta Elements
Information