CGI abuses : XSS Family for Nessus

IDNameSeverity
102996IBM WebSphere Portal XSS (swg22008028)
medium
102731Splunk Enterprise 6.6.x < 6.6.3 / Splunk Light 6.6.x < 6.6.3 Multiple XSS
medium
102176IBM WebSphere Portal 8.0.0.x < 8.0.0.1 CF22 Unspecified XSS (PI80564)
medium
102175IBM WebSphere Portal 7.0.0.x < 7.0.0.2 CF30 Unspecified XSS (PI80564)
medium
101846EMC RSA Authentication Manager < 8.2 SP1 Patch 1 Token Profile Name Stored XSS (ESA-2017-068)
low
101089Check_MK < 1.4.0p6 webapi.py XSS
medium
100872Sophos Web Appliance < 4.3.2 FTP Redirect Page Reflected XSS
medium
100845Sophos Web Appliance < 4.3.0 FTP Redirect Page Reflected XSS
medium
97417McAfee ePolicy Orchestrator 5.1.x < 5.1.3 HF1110787 Computer Management Services XSS (SB10184)
low
97193Tenable Nessus 6.8.x and 6.9.x < 6.9.1 Stored XSS (TNS-2016-17)
low
97192Tenable Nessus 6.x < 6.9 Multiple Vulnerabilities (TNS-2016-16) (SWEET32)
critical
96833Tenable Nessus 6.x < 6.9.3 Multiple Stored XSS
low
94759Adobe Connect < 9.5.7 event_registration.html Multiple Parameter XSS (APSB16-35)
medium
92841VMware vRealize Log Insight 2.x / 3.x < 3.3.2 Multiple Vulnerabilities (VMSA-2016-0008)
medium
91989ManageEngine ADSelfService Plus < 5.3 Build 5313 PasswordSelfServiceAPI XSS
medium
91713VMware vCenter Server 5.0.x < 5.0u3g / 5.1.x < 5.1u3d / 5.5.x < 5.5u2d Reflected XSS (VMSA-2016-0009)
medium
91460BlackBerry Enterprise Service (BES) Management Console 12.x < 12.4.1 Multiple XSS
medium
90835McAfee Email Gateway 7.6.x < 7.6.404 Blocked Email Alert XSS (SB10153)
medium
90763VMware vRealize Automation 6.x < 6.2.4 Unspecified Stored XSS (VMSA-2016-0003)
low
90537Piwik < 2.16.0 Unspecified XSS
medium
90445ManageEngine Firewall Analyzer Multiple XSS
medium
90351VMware vRealize Business Unspecified Stored XSS (VMSA-2016-0003)
low
90247Apache Jetspeed Portal URI Path Reflected XSS
medium
88965Nessus Web UI Scanned Content Stored XSS
medium
88904Tenable Nessus < 6.5.5 Host Details Scan Results XSS
low
88842Fortinet FortiWeb 5.1.2 < 5.3.5 Autolearn Configuration Multiple XSS
medium
88840Fortinet FortiADC Model D < 4.2 Theme Login Page XSS
medium
86804ManageEngine AssetExplorer < 6.1.0 Build 6113 Multiple XSS
medium
86471Fortinet FortiManager FortiOS 5.0.x >= 5.0.3 and < 5.0.11 Dataset Reports XSS
medium
86470Fortinet FortiAnalyzer FortiOS 5.0.x < 5.0.11 / 5.2.x < 5.2.2 Dataset Reports XSS
medium
86445DNN (DotNetNuke) < 7.4.2 Multiple Vulnerabilities
medium
86020Joomla! 3.4.x < 3.4.4 Login Module XSS
medium
85962Splunk Enterprise 6.2.x < 6.2.6 / Splunk Light 6.2.x < 6.2.6 Splunk Web XSS
medium
85380MS15-087: Vulnerability in UDDI Services Could Allow Elevation of Privilege (3082459) (uncredentialed check)
medium
85221Atlassian JIRA 4.2.x < 5.1.1 Multiple XSS
medium
85217Atlassian JIRA 4.2.x < 4.4 / 4.3.x < 4.4 Multiple XSS
medium
83520IBM Rational License Key Server Administration and Reporting Tool 8.1.4.x < 8.1.4.7 XSS
medium
83475Adobe/Apache Flex ASDoc Tool XSS
medium
83351WordPress Multiple XSS
medium
82827WP Super Cache Plugin for WordPress wp-cache.php Cache List Content Handling XSS
medium
81699MyBB < 1.6.15 Video MyCode XSS
medium
81670Fortinet FortiMail < 4.3.9 / 5.0.8 / 5.1.5 / 5.2.3 XSS
medium
81552Symantec Data Center Security Server 'WCUnsupportedClass.jsp' XSS
medium
81550Symantec Data Center Security Server 'SSO-Error.jsp' XSS (SYM15-001)
low
81385FancyBox Plugin for WordPress 'mfbfw' Parameter Persistent XSS
medium
81383Fortinet FortiAuthenticator 'operation' Parameter XSS
high
81319DNN (DotNetNuke) < 7.4.0 Unspecified Persistent XSS
medium
80553W3 Total Cache Plugin For WordPress Cache Key XSS
medium
79743LogAnalyzer < 3.6.6 index.php / detail.php 'hostname' Parameter XSS
medium
79624Apache Traffic Server Host HTTP XSS
medium