CGI abuses Family for Nessus

IDNameSeverity
176633CKAN < 2.9.9 / 2.10.1 RCE
critical
176630TerraMaster TOS < 4.2.30 Command Injection (CVE-2022-24990)
high
176566Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0604)
high
176560Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0612)
high
176559Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0603)
high
176558Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0611)
high
176557Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0605)
medium
176556Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0609)
high
176555Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0606)
high
176554Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0601)
high
176553Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0602)
high
176486Joomla 4.2.x < 4.3.2 Multiple Vulnerabilities (5887-joomla-4-3-2-security-and-bug-fix-release)
medium
176463Liferay Portal 7.4.3.4 < 7.4.3.61 Authentication Bypass
medium
176454Atlassian Confluence < 7.19.9 (CONFSERVER-83218)
medium
176453Liferay Portal 7.4.3.4 < 7.4.3.49 Authentication Bypass
medium
176452Liferay Portal 7.3.1 <= 7.3.7 / 7.4.0 < 7.4.3.18 SQL Injection
critical
176450Liferay Portal 7.4.3.67 < 7.4.3.68 Authentication Bypass
high
176448Liferay Portal 7.4.3.48 < 7.4.3.77 REDoS
high
176446Liferay Portal 7.4.3.21 <= 7.4.3.62 XSS
medium
176415Spring Cloud Gateway Code Injection (CVE-2022-22947)
critical
176413Liferay Portal 7.4.3.41 <= 7.4.3.52 Reflected XSS
medium
176409Liferay Portal 7.0.0 <= 7.0.6 / 7.1.0 <= 7.1.3 / 7.2.0 <= 7.2.1 / 7.3.0 < 7.3.1 Insufficient Verification
high
176401PaperCut MF SecurityRequestFilter Authentication Bypass (CVE-2023-27351)
high
176383Liferay Portal 7.1.0 - 7.1.3, 7.2.0 - 7.2.1, 7.3.0 - 7.3.7, 7.4.0 - 7.4.3.12 XSS
medium
176379FatPipe MPVPN < 10.1.2r60p92 / 10.2.2 < 10.2.2r44p1 Configuration File Upload (CVE-2021-27860)
high
176378FatPipe MPVPN < 10.1.2r60p91 / 10.2.2 < 10.2.2r42 Multiple Vulnerabilities
critical
176251GitLab 16.0.0 < 16.0.1 (CVE-2023-2825)
high
176211NoviSurvey Insecure Deserialization Vulnerability (CVE-2023-29492)
critical
176143WordPress None < 6.2.2
high
176109GitLab 0.0 < 15.9.8 / 15.10.0 < 15.10.7 / 15.11.0 < 15.11.3 (CVE-2023-2181)
medium
176075Sophos Web Appliance Pre-Authentication Command Injection (CVE-2023-1671)
critical
176037PaperCut MF Detection
info
176036PaperCut MF Authentication Bypass (CVE-2023-27350)
critical
175909WordPress None < 6.2.1
high
175835Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.17 Multiple Vulnerabilities (CloudBees Security Advisory 2023-05-16)
critical
175782F5 Networks BIG-IQ iControl REST Arbitrary File Upload (K000132719)
medium
175674PaperCut NG SecurityRequestFilter Authentication Bypass (CVE-2023-27351)
high
175429IBM Cognos Analytics Multiple Vulnerabilities (6986505)
critical
175414Elastic Kibana < 8.7.1 Arbitrary Code Execution
high
175390Citrix ADC and Citrix Gateway Multiple Vulnerabilities (CTX477714)
medium
175389ManageEngine ADManager Plus <= Build 7005 RCE (deprecated)
critical
175388Mattermost Server < 7.1.6 / 7.2.x < 7.7.2 Information Disclosure (MMSA-2023-00138)
medium
175141GitLab 15.4 < 15.9.7 / 15.10 < 15.10.6 / 15.11 < 15.11.2 (CVE-2023-2478)
medium
175101ManageEngine ServiceDesk Plus < 14.1 Build 14105 XXE
medium
175100ManageEngine SupportCenter Plus < 14.2 Build 14200 XXE
medium
175099ManageEngine AssetExplorer < 6.9 Build 6989 XXE
medium
175098ManageEngine ServiceDesk Plus MSP < 14.2 Build 14200 XXE
medium
175050Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.16 Multiple Vulnerabilities (CloudBees Security Advisory 2023-05-03-security-advisory)
high
174996GitLab 15.10 < 15.10.5 / 15.11 < 15.11.1 (CVE-2023-2182)
high
174990GitLab 14.2 < 15.9.6 / 15.10 < 15.10.5 / 15.11 < 15.11.1 (CVE-2023-1965)
medium