CGI abuses Family for Nessus

ID	Name	Severity
306778	Splunk Universal Forwarder 9.3.0 < 9.3.11, 9.4.0 < 9.4.10, 10.0.0 < 10.0.4, 10.2.0 < 10.2.1 (SVD-2026-0404)	medium
306731	Quest KACE SMA 13.0.x < 13.0.385 / 13.1.x < 13.1.81 / 13.2.x < 13.2.183 / 14.0.x < 14.0.341 / 14.1.x < 14.1.101 Multiple Vulnerabilities	critical
306602	Drupal 10.5.x < 10.5.9 / 10.6.x < 10.6.7 / 11.2.x < 11.2.11 / 11.3.x < 11.3.7 Multiple Vulnerabilities (drupal-2026-04-15)	medium
306561	Splunk Enterprise 9.3.0 < 9.3.11, 9.4.0 < 9.4.10, 10.0.0 < 10.0.5, 10.2.0 < 10.2.2 (SVD-2026-0401)	medium
306560	Splunk Enterprise 9.3.0 < 9.3.11, 9.4.0 < 9.4.10, 10.0.0 < 10.0.5, 10.2.0 < 10.2.2 (SVD-2026-0402)	medium
306556	Splunk Enterprise 9.3.0 < 9.3.11, 9.4.0 < 9.4.10, 10.0.0 < 10.0.5, 10.2.0 < 10.2.1 (SVD-2026-0403)	high
306393	Adobe Connect <= 12.10 Multiple Vulnerabilities (APSB26-37)	critical
306169	Dotnetnuke < 10.2.2 Security code analysis rules triggered (GHSA-fcpv-w245-r2q7)	high
306168	Dotnetnuke < 10.2.2 Stored cross-site-scripting (XSS) via SVG upload (CVE-2026-40321)	high
305982	Dotnetnuke < 10.2.2 Same HostGUID for all new installs (CVE-2026-40306)	high
305981	Dotnetnuke 6.0.x < 10.2.2 Force Friend Request Acceptance (CVE-2026-40305)	medium
305964	Dotnetnuke < 10.2.2 Same HostGUID for all new installs (GHSA-2rhw-gw3f-477j)	high
305963	Dotnetnuke < 10.2.2 Stored cross-site-scripting (XSS) via SVG upload (GHSA-ffq7-898w-9jc4)	high
305962	Dotnetnuke 6.0.x < 10.2.2 Force Friend Request Acceptance (GHSA-fpj4-9qhx-5m6m)	high
305955	Apache ActiveMQ < 5.19.4 / 6.x < 6.2.3 Improper Input Validation Code Injection	high
305954	Apache ActiveMQ < 5.19.3 / 5.19.4, 6.x < 6.2.2 / 6.2.3 Classpath Path Traversal	medium
305940	SonicWall SMA 1000 Series <= 12.4.3-03245 / 12.5.x <= 12.5.0-02283 Multiple Vulnerabilities (SNWLID-2026-0003)	high
305938	Kibana 8.x < 8.19.14 / 9.0.x < 9.2.8 / 9.3.x < 9.3.3 Multiple Vulnerabilities (ESA-2026-21 / ESA-2026-24 / ESA-2026-25 / ESA-2026-26)	high
305638	GitLab 18.2 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-1101)	medium
305637	GitLab 11.3 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-1752)	medium
305636	GitLab 16.9.6 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-5173)	high
305635	GitLab 18.0.0 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-1516)	medium
305634	GitLab 18.2 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-4332)	medium
305633	GitLab 18.6 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-2619)	medium
305632	GitLab 18.2 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-4916)	low
305631	GitLab 12.10 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-1092)	high
305630	GitLab 18.2 < 18.8.9 / 18.9 < 18.9.5 / 18.10 < 18.10.3 (CVE-2026-2104)	medium
305301	Atlassian Confluence 9.0.1 < 9.0.2 / 9.2.5 < 9.2.15 / 9.5.1 < 10.2.7 (CONFSERVER-102542)	high
304414	Joomla 4.0.x < 5.4.4 / 6.0.x < 6.0.4 Joomla 6.0.4 & 5.4.4 Security & Bugfix Release (5944-joomla-6-0-4-5-4-4-security-bugfix-release)	high
304390	Metabase Enterprise < 1.54.22 / 1.55.x < 1.55.22 / 1.56.x < 1.56.22 / 1.57.x < 1.57.16 / 1.58.x < 1.58.10 / 1.59.x < 1.59.4 RCE (GHSA-fppj-vcm3-w229)	high
304265	GitLab 14.3 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-2370)	high
303800	NetScaler ADC and NetScaler Gateway Memory Overread (CTX696300 / CVE-2026-3055)	critical
303799	NetScaler ADC and NetScaler Gateway Race Condition (CTX696300 / CVE-2026-4368)	high
303627	GitLab 17.10 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-3857)	high
303626	GitLab 18.5 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-1724)	high
303625	GitLab 11.10 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-2726)	medium
303624	GitLab 15.4 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-2995)	medium
303623	GitLab 7.11 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-2745)	high
303622	GitLab 18.1 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-4363)	low
303621	GitLab 18.5 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-3988)	high
303620	GitLab 17.7 < 18.8.7 / 18.9 < 18.9.3 / 18.10 < 18.10.1 (CVE-2026-2973)	medium
303601	Atlassian Bamboo 9.6.x < 9.6.24 / 10.x < 10.2.16 / 11.x / 12.x < 12.1.3 Multiple Vulnerabilities	high
303587	Kibana 8.x < 8.19.12 / 9.x < 9.2.6 / 9.3.x < 9.3.1 Missing Authorization (ESA-2026-19)	medium
303586	Kibana 8.x < 8.19.13 / 9.x < 9.2.7 / 9.3.x < 9.3.2 DoS (ESA-2026-20)	medium
303451	Unraid < 7.2.4 Multiple Vulnerabilities (ZDI-26-171 / ZDI-26-172)	high
303449	MantisBT < 2.28.1 SOAP API Authentication Bypass (GHSA-phrq-pc6r-f6gh)	critical
303195	Cockpit < 2.13.5 SQLi (GHSA-7x5c-vfhj-9628)	medium
303190	Dell iDRAC9 < 7.00.00.174 / 7.10.90.00 Information Disclosure (DSA-2026-113)	medium
302915	Splunk Universal Forwarder 10.0.0 < 10.0.4, 10.2 < 10.2.1 (SVD-2026-0314)	high
302903	Jenkins plugin Multiple Vulnerabilities (2026-03-18)	high

Detections

Analytics

CGI abuses Family for Nessus

medium

critical

medium

medium

medium

high

critical

high

high

high

medium

high

high

high

high

medium

high

high

medium

medium

high

medium

medium

medium

low

high

medium

high

high

high

high

critical

high

high

high

medium

medium

high

low

high

medium

high

medium

medium

high

critical

medium

medium

high

high