CGI abuses Family for Nessus

Page 1 of 79 3946 total

IDNameSeverity
119461Logstash ESA-2014-02High
119460Logstash ESA-2015-04Medium
119422Kibana ESA-2018-17Medium
119327Kubernetes 1.x < 1.10.11 / 1.11.x < 1.11.5 / 1.12.x < 1.12.3 API Server Privilege EscalationCritical
119325Logstash JSON API Detection (deprecated)Info
119324Elasticsearch Detection (deprecated)Info
119015VMware vRealize Log Insight 4.6.x < 4.6.2 / 4.7.x < 4.7.1 Authorization Bypass Vulnerability (VMSA-2018-0028)Medium
118977WordPress Plugin 'AMP for WP - Accelerated Mobile Pages' < 0.9.97.20 Multiple VulnerabilitiesMedium
118935WordPress Plugin 'WP GDPR Compliance' < 1.4.3 Privilege EscalationHigh
118799Elasticsearch ESA-2018-16Medium
118798Kibana ESA-2018-18High
118714Oracle Primavera Gateway Multiple Vulnerabilities (Oct 2018 CPU)Critical
118713Atlassian JIRA XSRF, Open Redirect, and Access Control Bypass VulnerabilitiesMedium
118594Oracle Primavera Unifier Multiple Vulnerabilities (Oct 2018 CPU)High
118463Citrix NetScaler Gateway Cross-Site Scripting Vulnerability (CTX232199)Medium
118310jQuery-File-Upload Arbitrary File Upload Vulnerability (Remote Check)High
118307Drupal 7.x < 7.60 / 8.5.x < 8.5.8 / 8.6.x < 8.6.2 Drupal Multiple Vulnerabilities (SA-CORE-2018-006)High
118202Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (October 2018 CPU)Medium
118147Jenkins < 2.138.2 / 2.146 Multiple VulnerabilitiesMedium
118069Joomla! < 3.8.13 Multiple VulnerabilitiesHigh
117906QNAP Photo Station WebUI DetectionInfo
117884DNN (DotNetNuke) 5.0.0 < 9.2.2 Multiple VulnerabilitiesMedium
117861TP-Link Unauthenticated CGI Cross-Site Request Forgery (Remote)Critical
117809EMC RSA Authentication Manager < 8.3 Patch 3 Multiple Vulnerabilities (DSA-2018-152)Medium
117666Kibana ESA-2018-14Medium
117665Elasticsearch ESA-2018-15High
117639ManageEngine Desktop Central 10 < Build 100282 Remote Privilege EscalationMedium
117616Apache Hadoop YARN ResourceManager Web InterfaceInfo
117615Apache Hadoop YARN ResourceManager Unauthenticated RCE (Remote) (Xbash)Critical
117614Symantec Messaging Gateway 10.x < 10.6.6 Multiple Vulnerabilities (SYMSA1461)High
117602Webmin <= 1.590 Multiple VulnerabilitiesMedium
117601Apache ActiveMQ 5.x < 5.14.0 ActiveMQ Fileserver web application remote code execution (Xbash)High
117500PHP 7.2.x < 7.2.10 Transfer-Encoding Parameter XSS VulnerabilityMedium
117499PHP 7.1.x < 7.1.22 Transfer-Encoding Parameter XSS VulnerabilityMedium
117498PHP 7.0.x < 7.0.32 Transfer-Encoding Parameter XSS VulnerabilityMedium
117497PHP 5.6.x < 5.6.38 Transfer-Encoding Parameter XSS VulnerabilityMedium
117483Apache ActiveMQ Client 5.x < 5.15.6 TLS Hostname Verification WeaknessMedium
117482Apache ActiveMQ 5.14.x - 5.15.2 OpenWire Information DisclosureMedium
117462Zinwave Series 3000 DAS Web Interface Default CredentialsHigh
117340PHP < 5.6.37 or 7.2.x < 7.2.8 Multiple Vulnerabilities (Deprecated)Medium
117338Atlassian JIRA ProfileLinkUserFormat Information Disclosure VulnerabilityMedium
117337Jenkins < 2.121.3 / 2.138 Multiple VulnerabilitiesMedium
112214Ansible Tower WebUI DetectionInfo
112213Ansible Tower Unsupported VersionCritical
112212Ansible Tower 3.1.x < 3.1.8 / 3.2.x < 3.2.6 CSRF vulnerabilityMedium
112211EMC RSA Archer 6.1.x, 6.2.x, 6.3.x < 6.3.0.7 and 6.4.x < 6.4.0.1 SQL Injection VulnerabilityMedium
112210PHP Xdebug Module Unauthenticated RCE (exploit)Critical
112192Apache ActiveMQ 5.x < 5.15.5 Multiple VulnerabilitiesHigh
112160Joomla! < 3.8.12 Multiple VulnerabilitiesMedium
112115ASUSTOR Data Master < 3.1.6 Multiple VulnerabilitiesHigh

Page 1 of 79 3946 total