CGI abuses Family for Nessus

ID	Name	Severity
40872	Kayako SupportSuite Ticket Subject XSS	medium
40824	FlexCMS Login Cookie SQL Injection	high
40796	phpSANE file_save Parameter Remote File Include	high
40773	Web Application Potentially Sensitive CGI Parameter Detection	info
40668	Google Analytics on An Internal Web Server Detection	info
40667	Adobe ColdFusion On Apache Double Encoded NULL Byte Request File Content Disclosure	medium
40592	WP-Syntax Plugin for WordPress 'apply_filters' function Command Execution	high
40578	WordPress < 2.8.4 'wp-login.php' 'key' Parameter Remote Administrator Password Reset (uncredentialed check)	medium
40577	WordPress < 2.8.4 Password Reset	medium
40552	Spiceworks HTTP Response Accept Header Handling Overflow DoS	critical
40551	CMS Made Simple url Parameter Arbitrary File Access	medium
40470	Snitz Forums 2000 <= 3.4.07 register.asp 'Email' Parameter SQL Injection	high
40469	Snitz Forums 2000 Detection	info
40419	MODx config.js.php Information Disclosure	medium
40406	CGI Generic Tests HTTP Errors	info
40354	OpenWrt Router with a Blank Password (telnet check)	critical
40352	phpMyAdmin Installation Not Password Protected	high
11139	CGI Generic SQL Injection	high
40349	eAccelerator encoder.php File Backup	high
40334	Ruby on Rails HTTP Digest Authentication Bypass	high
40331	Log Rover pword Parameter SQL Injection	high
39875	FCKeditor.Java Connector Servlet 'CurrentFolder' Infinite Loop DoS	medium
39806	FCKeditor 'CurrentFolder' Arbitrary File Upload	high
39790	Adobe ColdFusion FCKeditor 'CurrentFolder' File Upload	high
39621	FireStats < 1.6.2 Multiple Vulnerabilities	high
39617	HP DDMI on Windows Unspecified Remote Agent Access	high
39616	HP DDMI Web Interface Default Credentials	high
39537	Movable Type Detection	info
39536	BASE < 1.2.5 readRoleCookie() Auth Bypass	high
39535	Basic Analysis and Security Engine Authentication Check	medium
39501	Zen Cart password_forgotten.php Admin Access Bypass	high
39500	Zen Cart Detection	info
39482	Acajoom Component for Joomla! <= 3.2.6 Backdoor Detection	high
39480	PHP < 5.2.10 Multiple Vulnerabilities	medium
39470	CGI Generic Tests Timeout	info
39469	CGI Generic Remote File Inclusion	high
39468	CGI Generic Header Injection	medium
39467	CGI Generic Path Traversal	medium
39465	CGI Generic Command Execution	high
39447	Apache Tomcat RequestDispatcher Directory Traversal Arbitrary File Access	medium
39365	Drupal SA-CONTRIB-2009-036: Services Module Key-Based Access Bypass	medium
39314	Sun Java System Directory Server Online Help Feature Information Disclosure	medium
38974	JVideo! Component for Joomla! 'user_id' Parameter SQLi	high
38952	CrashPlan Server Default Administrative Credentials	high
38926	DokuWiki config_cascade Parameter Remote File Inclusion	medium
38925	WP-Lytebox 'pg' Parameter Local File Inclusion	medium
38890	VICIDIAL Call Center Suite Default Administrative Credentials	high
38889	VICIDIAL Call Center Suite admin.php SQL Injection	medium
38888	TinyWebGallery lang Parameter Local File Inclusion	high
38879	Coppermine Photo Gallery GLOBALS[USER[lang] Parameter Local File Inclusion	medium

Detections

Analytics

CGI abuses Family for Nessus

medium

high

high

info

info

medium

high

medium

medium

critical

medium

high

info

medium

info

critical

high

high

high

high

high

medium

high

high

high

high

high

info

high

medium

high

info

high

medium

info

high

medium

medium

high

medium

medium

medium

high

high

medium

medium

high

medium

high

medium