CGI abuses : XSS Family for Nessus

ID	Name	Severity
85217	Atlassian JIRA 4.2.x < 4.4 / 4.3.x < 4.4 Multiple XSS	medium
83520	IBM Rational License Key Server Administration and Reporting Tool 8.1.4.x < 8.1.4.7 XSS	medium
83475	Adobe/Apache Flex ASDoc Tool XSS	medium
83351	WordPress Multiple XSS	medium
82827	WP Super Cache Plugin for WordPress wp-cache.php Cache List Content Handling XSS	medium
81699	MyBB < 1.6.15 Video MyCode XSS	medium
81670	Fortinet FortiMail < 4.3.9 / 5.0.8 / 5.1.5 / 5.2.3 XSS	medium
81552	Symantec Data Center Security Server 'WCUnsupportedClass.jsp' XSS	medium
81550	Symantec Data Center Security Server 'SSO-Error.jsp' XSS (SYM15-001)	low
81385	FancyBox Plugin for WordPress 'mfbfw' Parameter Persistent XSS	medium
81383	Fortinet FortiAuthenticator 'operation' Parameter XSS	high
81319	DNN (DotNetNuke) < 7.4.0 Unspecified Persistent XSS	medium
80553	W3 Total Cache Plugin For WordPress Cache Key XSS	medium
79743	LogAnalyzer < 3.6.6 index.php / detail.php 'hostname' Parameter XSS	medium
79624	Apache Traffic Server Host HTTP XSS	medium
79387	LiveZilla < 5.3.0.8 XSS	medium
79385	Google Calendar Events Plugin for WordPress 'admin-ajax.php' XSS	medium
79253	Fortinet FortiAnalyzer / FortiManager < 5.0.7 Multiple Unspecified XSS (FG-IR-14-033)	medium
78738	phpMyAdmin 4.0.x < 4.0.10.5 / 4.1.x < 4.1.14.6 / 4.2.x < 4.2.10.1 Multiple XSS (PMASA-2014-12)	low
78233	phpMyAdmin 4.0.x < 4.0.10.4 / 4.1.x < 4.1.14.5 / 4.2.x < 4.2.9.1 'ENUM' Value XSS (PMASA-2014-11)	low
78109	MediaWiki < 1.19.20 / 1.22.12 / 1.23.5 'includes/OutputPage.php' XSS	low
78063	MediaWiki < 1.19.19 / 1.22.11 / 1.23.4 SVG Upload and CSS XSS	medium
77983	Moodle Multiple XSS	medium
77707	Webmin < 1.690 Multiple XSS	medium
77706	Usermin < 1.600 Multiple Vulnerabilities	medium
77684	Riverbed SteelApp (Stingray) Traffic Manager < 9.7 Multiple XSS	medium
77538	IBM WebSphere Portal Unspecified XSS (PI16174)	low
77537	IBM WebSphere Portal Unspecified XSS (PI16127)	medium
77536	IBM WebSphere Portal Unspecified XSS (PI18845)	low
77480	ManageEngine EventLog Analyzer 'j_username' XSS	medium
77305	phpMyAdmin 4.0.x < 4.0.10.2 / 4.1.x < 4.1.14.3 / 4.2.x < 4.2.7.1 Multiple XSS Vulnerabilities (PMASA-2014-8 - PMASA-2014-9)	low
77302	Gurock TestRail < 3.1.3 XSS	medium
77220	Fortinet FortiWeb 5.x < 5.2.1 Multiple XSS Vulnerabilities	medium
76943	CKEditor Preview Plugin Unspecified XSS	medium
76278	phpMyAdmin 4.1.x < 4.1.14.1 / 4.2.x < 4.2.4 Navigation Hiding Items Multiple XSS (PMASA-2014-3)	low
76277	phpMyAdmin 4.2.x < 4.2.4 Recent/Favorite Table Navigation Multiple XSS (PMASA-2014-2)	low
76148	MediaWiki < 1.19.16 / 1.21.10 / 1.22.7 'Special:PasswordReset' XSS	low
76119	McAfee Web Gateway < 7.1.0.5 / 7.1.5.2 XSS	medium
74511	Blackboard Learning System <= 8.0 SP6 Unspecified XSS	medium
74365	Juniper ScreenOS < 5.4.0r10 / 6.0 < 6.0.0r6 / 6.1 < 6.1.0r2 Web Interface and Telnet Login Pages XSS (JSA10388)	medium
74243	Splunk '/en-US/app/' Referer Header XSS	medium
74161	IBM WebSphere Portal Unspecified JSP XSS (PI16040)	medium
74159	IBM WebSphere Portal 'boot_config.jsp' XSS (PI16041)	medium
74158	IBM WebSphere Portal 'FilterForm.jsp' XSS (PI15690)	medium
73824	Puppet Enterprise Multiple XSS Vulnerabilities	medium
73823	Puppet Dashboard Multiple XSS Vulnerabilities	medium
73804	MediaWiki < 1.21.9 / 1.22.6 'InfoAction.php' XSS	medium
73690	Symantec Messaging Gateway 10.x < 10.5.2 Management Console XSS (SYM14-006)	medium
73622	Atmail Webmail 6.6.x < 6.6.3 / 7.x < 7.0.3 File Name Parameter XSS	medium
73620	Atmail Webmail < 6.5.0 'DOM processor' XSS	medium

Detections

Analytics

CGI abuses : XSS Family for Nessus

medium

medium

medium

medium

medium

medium

medium

medium

low

medium

high

medium

medium

medium

medium

medium

medium

medium

low

low

low

medium

medium

medium

medium

medium

low

medium

low

medium

low

medium

medium

medium

low

low

low

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium