CGI abuses Family for Nessus

IDNameSeverity
153402Drupal 8.9.x < 8.9.19 / 9.1.x < 9.1.13 / 9.2.x < 9.2.6 Multiple Vulnerabilities (drupal-2021-09-15)
medium
153176Citrix ADM Authentication Bypass (CTX247738)
critical
153175Citrix ADM Authentication Bypass (CTX261735)
high
153173WordPress 5.8 < 5.8.1 / 5.7 < 5.7.3 / 5.6 < 5.6.5 / 5.5 < 5.5.6 / 5.4 < 5.4.7 / 5.2 < 5.2.12
high
153158ManageEngine ADManager Plus Detection
info
153157ManageEngine ADManager Plus < 7111 RCE
critical
153147ManageEngine ADSelfService Plus < build 6114 REST API Authentication Bypass
critical
153087Atlassian Confluence Server Webwork OGNL Injection (CVE-2021-26084)
critical
152984Joomla 4.0 < 4.0.1 Insufficient Access Control (5846-joomla-4-0-1)
critical
152865Atlassian JIRA < 8.5.14 / 8.6.x < 8.13.6 / 8.14.x < 8.16.1 XSS (JRASERVER-72392)
medium
152864Atlassian Confluence < 6.13.23 / 6.14 < 7.4.11 / 7.5 < 7.11.6 / 7.12 < 7.12.5 Webwork OGNL Injection (CONFSERVER-67940)
critical
152853PHP < 7.3.28 Email Header Injection
medium
152680ManageEngine ADSelfService Plus < Build 6102 RCE
critical
152534VMware Workspace One Access / VMware Identity Manager Multiple Vulnerabilities (VMSA-2021-0016)
critical
152533Drupal 8.9.x < 8.9.18 / 9.1.x < 9.1.12 / 9.2.x < 9.2.4 Multiple Vulnerabilities (SA-CORE-2021-005)
medium
152487Adobe Connect < 11.2.3 Privilege Escalation (ASPB21-66)
medium
152140Open Access Management Detection
info
152139OpenAM RCE (CVE-2021-35464)
critical
152137Atlassian Jira Data Center / Jira Service Management Data Center Missing Authentication (2021-07-21)
critical
151974Oracle Primavera Gateway (Jul 2021 CPU)
high
151973Oracle Primavera Unifier (Jul 2021 CPU)
high
151932Drupal 7.x < 7.82 / 8.9.x < 8.9.17 / 9.1.x < 9.1.11 / 9.2.x < 9.2.2 Drupal Vulnerability (SA-CORE-2021-004)
high
151892Oracle Primavera P6 Enterprise Project Portfolio Management (Jul 2021 CPU)
medium
151620Liferay Portal 7.3.5 SQLi
high
151577Liferay Portal 7.3.4 < 7.3.6 XSS
medium
151576Liferay Portal 7.3.x < 7.3.6 Information Disclosure
medium
151575Liferay Portal 7.2.x < 7.3.6 XSS
medium
151489OpenTSDB yrange RCE (direct check)
critical
151429Joomla 2.5.x < 3.9.28 Multiple Vulnerabilities (5840-joomla-3-9-28)
medium
151292Liferay Portal 7.x <= 7.2.1 / 7.3 < 7.3.6 Multiple Vulnerabilities
medium
151291ForgeRock Access Management < 7.0 RCE
critical
151288ForgeRock Access Management Detection
info
151286ManageEngine ServiceDesk Plus < 11.2 Build 11205 RCE
high
151193Jenkins LTS < 2.289.2 / Jenkins weekly < 2.300 Multiple Vulnerabilities
medium
151189Easy WP SMTP Plugin for WordPress < 1.4.4 Sensitive Information Disclosure
high
151025WordPress Plugin 'SRS Simple Hits Counter' Information Disclosure (direct check)
high
151011Liferay Portal Insecure Deserialization (CST-7213)
high
150866Citrix ADC and Citrix NetScaler Gateway Multiple Vulnerabilities (CTX297155)
medium
150865Citrix SD-WAN Center Test Build Network DoS (CTX297155)
medium
150720SonicWall Secure Remote Access (SRA) Pre-Authentication SQLi (CVE-2019-7481)
high
150715SonicWall Secure Remote Access (SRA) Unsupported Version
critical
150440Adobe Connect <11.2.2 Privilege Escalation (ASPB21-36)
medium
150245HPE Edgeline Infrastructure Manager Authentication Bypass (HPESBGN04124)
critical
150057Nagios XI < 5.8 Privilege Escalatioon
critical
150056Nagios XI < 5.7 Code Injection
high
150055Nagios XI < 5.7.5 Multiple Vulnerabilities
high
150054Nagios Fusion < 4.1.9 Multiple Vulnerabilities
critical
150049EMC RSA Archer 6.6 < 6.6 P8 / 6.7 < 6.7 P8 / 6.8 < 6.8 P5 / 6.9 < 6.9 SP1 P1 Stored Cross-site Scripting
medium
150048EMC RSA Archer 6.6 < 6.6 P8 / 6.7 < 6.7 P8 / 6.8 < 6.8 P5 / 6.9 < 6.9 P2 Insecure Credential Storage
medium
149999Drupal 8.9.x < 8.9.16 / 9.x < 9.0.14 / 9.1.x < 9.1.9 Drupal Vulnerability (SA-CORE-2021-003)
high