CGI abuses : XSS Family for Nessus

ID	Name	Severity
59097	Symantec Web Gateway timer.php XSS (SYM12-006)	medium
58907	Moodle MSA-11-0007 'coursetags_more.php' XSS	medium
58816	IBM Tivoli Directory Server Web Administration Tool Unspecified XSS	medium
58748	Dolibarr Multiple Script URI XSS	medium
58747	Dolibarr 3.1.0 admin/company.php username Parameter XSS	medium
58582	McAfee WebShield UI ProcessTextFile bodyStyle Parameter XSS (SB10020)	medium
58455	Zenphoto 404 Error Page XSS	medium
58087	phpMyAdmin 3.4.x < 3.4.10.1 XSS (PMASA-2012-1)	medium
58040	phpLDAPadmin lib/QueryRender.php base Parameter XSS	medium
57981	Oracle WebCenter Content idc/idcplg Multiple Parameter XSS	medium
57979	Oracle WebCenter Content Help Component XSS	medium
57889	Oracle Fusion WebLogic Server Component WLS-Console Management Interface Unspecified XSS	low
57767	Symantec Endpoint Protection Manager TestConnection.jsp 'Msg' Parameter XSS (SYM11-009 & SYM12-001)	medium
57635	SimpleSAMLphp logout.php link_href Parameter XSS	medium
57617	Cacti < 0.8.7g Multiple XSS and HTML Injection Vulnerabilities	medium
57372	phpMyAdmin 3.4.x < 3.4.9 XSS (PMASA-2011-19 - PMASA-2011-20)	medium
57371	ManageEngine ServiceDesk Plus 8.0.0 < Build 8015 Multiple XSS Vulnerabilities	medium
57337	phpMyAdmin 3.4.x < 3.4.8 XSS (PMASA-2011-18)	medium
57049	ManageEngine ADSelfService EmployeeSearch.cc Multiple XSS	medium
17709	PHP < 4.4.2 Multiple XSS Vulnerabilities	low
17708	Oracle 9i Application Server HTTP Request Smuggling	medium
56652	phpMyAdmin 3.4.x < 3.4.6 XSS (PMASA-2011-16)	medium
56565	MODx < 2.0.3-pl modahsh Parameter XSS	low
56379	phpMyAdmin 3.4.x < 3.4.5 XSS (PMASA-2011-14)	medium
56240	Phorum 5.2.x < 5.2.17 'control.php' 'real_name' XSS	medium
56172	OpenAdmin Tool for Informix informixserver Parameter XSS	medium
55993	phpMyAdmin 3.3.x / 3.4.x < 3.3.10.4 / 3.4.4 XSS (PMASA-2011-13	medium
55977	Sitecore CMS 'default.aspx' XSS	medium
55975	Apache Hadoop Jetty XSS	medium
55831	HP OpenView Performance Insight sendEmail.jsp XSS	medium
55801	MS11-061: Vulnerability in Remote Desktop Web Access Could Allow Elevation of Privilege (2546250) (uncredentialed check)	medium
55775	jCart 1.1 my-item-name POST Parameter XSS	medium
55904	CGI Generic Script Injection (quick test)	medium
55903	CGI Generic XSS (extended patterns)	medium
55702	Oracle Secure Backup Administration Server login.php XSS	medium
55511	Mambo task Parameter XSS	medium
54842	Movable Type mt-comments.cgi static Parameter XSS	medium
54604	MDaemon WorldClient < 12.0.3 Summary Page Email Subject XSS	medium
54603	Adobe RoboHelp FlashHelp Unspecified XSS (APSB11-09) (uncredentialed check)	medium
54579	Mailman < 2.1.14 Multiple XSS	low
53869	IceWarp install/index.html lang Parameter XSS	medium
53622	HP SiteScope XSS	medium
53576	Atlassian Confluence 2.x >= 2.7 / 3.x < 3.4.9 Multiple XSS	low
53575	Atlassian Confluence 2.x >= 2.7 / 3.x < 3.4.6 Multiple XSS	low
53449	MediaWiki API XSS	medium
53448	MediaWiki Backslash Escaped CSS Comments XSS	medium
53288	MyBB xmlhttp.php 'value' Parameter XSS	medium
52659	IBM Lotus Sametime Server stconf.nsf messageString Parameter XSS	medium
52483	CGI Generic XSS (persistent, 3rd Pass)	medium
52054	MySQL Eventum forgot_password.php XSS	medium

Detections

Analytics

CGI abuses : XSS Family for Nessus

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

low

medium

medium

medium

medium

medium

medium

medium

low

medium

medium

low

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

low

medium

medium

low

low

medium

medium

medium

medium

medium

medium