Detections
Analytics

CGI abuses Family for Nessus

IDNameSeverity
24669Plain Old Webserver URI Traversal Arbitrary File Access
medium
24356LifeType rss.php profile Parameter Traversal Arbitrary File Access
medium
24345MailEnable Web Mail Client Multiple Vulnerabilities (XSS, CSRF)
medium
24322DevTrack Web Service UserName Field SQL Injection
high
24284Advanced Poll admin/index.php Session Identifier Replay Authentication Bypass
high
24283ColdFusion / JRun on IIS Double Encoded NULL Byte Request File Content Disclosure
medium
24267ExoPHPDesk faq.php id Parameter SQL Injection
medium
24266Drupal Comment Module comment_form_add_preview() Function Arbitrary Code Execution
medium
24265Drupal Comment Function Arbitrary Code Execution
medium
24264Drupal Multiple Module $_SESSION Manipulation CAPTCHA Bypass
medium
24263CVSTrac Text Output Formatter SQL Injection DoS
medium
24262LedgerSMB / SQL-Ledger login.pl script Parameter Arbitrary Perl Code Execution
high
24261PHProxy Detection
info
24237WordPress Pingback File Information Disclosure
medium
24235Website Baker REMEMBER_KEY Cookie SQL Injection
medium
24228Oreon lang/index.php file Parameter Remote File Inclusion
high
24223WoltLab Burning Board search.php Multiple Parameter SQL Injection
high
24014WordPress Trackback 'wp-trackback.php' 'tb_id' Parameter SQL Injection
high
24011WordPress Trackback Charset Decoding SQL Injection
medium
24003Cuyahoga FCKEditor Misconfiguration Unrestricted File Upload
medium
24001phpMyFAQ < 1.6.8 Multiple SQL Injection Vulnerabilities
high
23968phpBB < 2.0.22 Multiple Vulnerabilities
critical
23966Ultimate PHP Board chat/login.php username Parameter Arbitrary Command Execution
high
23965Jinzora Multiple Script include_path Parameter Remote File Inclusion
medium
23964Cacti copy_cacti_user.php template_user Variable SQL Injection
high
23963Cacti cmd.php Multiple Parameter SQL Injection Arbitrary Command Execution
high
23934Mono XSP for ASP.NET Server Crafted Request Script Source Code Disclosure
medium
23933TYPO3 'spell-check-logic.php' 'userUid' Parameter Arbitrary Command Execution
high
23927PHP-Update blog.php Variable Overwriting Arbitrary Code Execution
high
23843JBoss Application Server (jbossas) JMX Console DeploymentFileRepository Traversal Arbitrary File Manipulation
high
23842JBoss JMX Console Unrestricted Access
high
23840PatchLink Update /dagent/downloadreport.asp Multiple Parameter SQL Injection
high
23785Seditio Detection
info
23784phpWebThings core/editor.php editor_insert_bottom Parameter Remote File Inclusion
medium
23782Land Down Under / Seditio polls.php id Parameter SQL Injection
medium
23781JCE Admin Component for Joomla! 'plugin' Parameter Local File Include
high
23780ThinClientServer Admin Account Creation Privilege Escalation
high
23774PHP Easy Download admin/save.php moreinfo Parameter Code Injection
high
23755MailEnable NetWebAdmin Unauthorized Access (ME-10019)
high
23752Serendipity serendipity_event_bbcode.php Script serendipity[charset] Parameter Local File Inclusion
medium
23734WoltLab Burning Board Lite wbb_userid Parameter PHP Unset SQL Injection
medium
23733WoltLab Burning Board Lite thread.php decode_cookie Function threadvisit Cookie Parameter SQL Injection
high
23724Etomite CMS index.php id Parameter SQL Injection
medium
23652ELOG Web LogBook global Denial of Service
medium
23651Verity Ultraseek < 5.7 Multiple Vulnerabilities
critical
23641MODx CMS base_path Parameter Remote File Inclusion
medium
23640Exhibit Engine styles.php toroot Parameter Remote File Inclusion
medium
23639IBM WebSphere snoopservlet Path Disclosure
medium
23638IBM WebSphere Application Server '%20' Request Source Disclosure
medium
23624e107 class2.php e107language_e107cookie Cookie Traversal Local File Inclusion
high