CGI abuses Family for Nessus

IDNameSeverity
148430ManageEngine AssentExplorer < 6.8 Unauthenticated Stored XSS
medium
148429ManageEngine ServiceDesk Plus < 11.2 Build 11200 Unauthenticated Stored XSS
medium
148418Jenkins LTS < 2.277.2 / Jenkins weekly < 2.287 Multiple Vulnerabilities
medium
148401Jenkins weekly < 2.280 Privilege Escalation
high
148391Atlassian JIRA < 8.5.13 / 8.6.x < 8.13.5 / 8.14.x < 8.15.1 Multiple Vulnerablities
medium
148307ManageEngine OpManager Smart Update Manager RCE
high
148265Atlassian Jira < 8.13.3 / 8.14.x < 8.14.1 Broken Authentication (JRASERVER-72029)
medium
148180SolarWinds Orion Platform < 2020.2.5 Multiple Vulnerabilities
high
148038ManageEngine Desktop Central < 10.0.647 Multiple Vulnerabilities
medium
147923HPE Systems Insight Manager RCE (CVE-2020-7200)
high
147728Atlassian JIRA < 8.5.11 / 8.6.x < 8.13.3 / 8.14.x < 8.15.0 Multiple XSS
medium
147705Joomla 1.6.x < 3.9.25 Multiple Vulnerabilities (5834-joomla-3-9-25)
medium
147419Adobe Connect <= 11.0.5 Multiple Vulnerabilities (ASPB21-19)
medium
147020PRTG Network Monitor < 20.1.57.1745 Information Disclosure (direct check)
medium
146935Citrix ADC and Citrix NetScaler Gateway Reflected Code Injection (CTX276688) (Direct Check)
medium
146928SolarWinds Orion Web Performance Monitor (WPM) Remote Detection
info
146927Accellion File Transfer Appliance Unsupported Version
medium
146869Atlassian Confluence < 6.13.18 / 6.14 < 7.4.6 / 7.5 < 7.8.3 Arbitrary File Read (CONFSERVER-60469)
medium
146824Atlassian Jira < 8.5.11 / 8.13.3 / 8.15.0 Arbitrary File Read (JRASERVER-72014)
medium
146806HPE Edgeline Infrastructure Manager Authentication Bypass
critical
146593Atlassian JIRA < 8.13.2 / 8.14.x < 8.14.1 Information Disclosure (JRASERVER-71950)
medium
146592Atlassian JIRA < 8.5.11 / 8.6.x < 8.13.3 / 8.14.x < 8.14.1 Information Disclosure (JRASERVER-72000)
medium
146498Webmin <= 1.930 XXE
medium
146496Webmin 1.840 / 1.880 LFI
medium
146495Webmin < 1.970 Multiple Vulnerabilities
high
146488Webmin <= 1.910 Remote Command Execution
high
146311PHP 7.3.x < 7.3.27 / 7.4.x < 7.4.15 / 8.x < 8.0.2 DoS
medium
146310SolarWinds Orion Platform < 2020.2.4 Multiple Vulnerabilities
critical
146309SolarWinds Orion Platform < 2019.4.2 Remote Code Execution
critical
146103Atlassian JIRA < 8.5.10 / 8.6.x < 8.13.2 Information Disclosure (JRASERVER-72002)
medium
146091SonicWall Secure Mobile Access Remote Code Execution (SNWLID-2021-0001)
high
146088SonicWall Secure Mobile Access (SMA) Web Detection
info
146087Apache ActiveMQ 5.x < 5.15.14 / 5.16.x < 5.16.1 Authentication Bypass (CVE-2021-26117)
medium
145569Oracle Primavera Unifier (Jan 2021 CPU)
high
145538Oracle MySQL Enterprise Monitor Multiple Vulnerabilities (Jan 2021 CPU)
high
145533Jenkins < 2.263.3 LTS / 2.276 TOCTOU
low
145248Jenkins < 2.263.2 LTS / 2.275 Multiple Vulnerabilities
medium
145245Oracle Primavera P6 Enterprise Project Portfolio Management (Jan 2021 CPU)
low
145223Oracle Primavera Gateway (Jan 2021 CPU)
medium
144980Joomla 3.0.x < 3.9.24 Multiple Vulnerabilities (5830-joomla-3-9-24)
medium
144947PHP 7.3.x < 7.3.26 / 7.4.x < 7.4.14 / 8.x < 8.0.1 Input Validation Error
medium
144793ManageEngine Applications Manager REST API SQLi
high
144756Dell iDRAC XSS (DSA-2020-268)
medium
144649phpMyAdmin 4.9.0 < 4.9.6 / 5.0.0 < 5.0.3 Multiple Vulnerabilities (PMASA-2020-5, PMASA-2020-6)
high
144646phpMyAdmin 4.9.0 < 4.9.5 / 5.0.0 < 5.0.2 Multiple Vulnerabilities (PMASA-2020-2, PMASA-2020-3, PMASA-2020-4)
medium
144644phpMyAdmin 4.4.0 < 4.4.15.1 / 4.5.0 < 4.5.1 Content Spoofing (PMASA-2015-5)
medium
144641phpMyAdmin 4.0.0 < 4.0.10.12 / 4.4.0 < 4.4.15.2 / 4.5.0 < 4.5.3.1 Information Disclosure (PMASA-2015-6)
medium
144622SolarWinds Orion Platform < 2019.4 HF6 / 2020.2 < 2020.2.1 HF2 Authentication Bypass (SUPERNOVA)
high
144366SolarWinds Orion Platform < 2020.2.1 XSS
medium
144365Apache Struts 2.x < 2.5.26 RCE (S2-061) (direct check)
high