CGI abuses Family for Nessus

ID	Name	Severity
14382	WebMatic Unspecified Login Function Access Vulnerability	high
14379	Merak Webmail / IceWarp Web Mail < 5.2.8 Multiple Vulnerabilities	high
14370	HastyMail HTML Attachment Script Execution	medium
14365	WebAPP Directory Traversal	medium
14364	TikiWiki < 1.8.2 Multiple Input Validation Vulnerabilities	high
14363	INL ulog-php port.php proto Parameter SQL Injection	high
14359	TikiWiki Unauthorized Page Access	medium
14356	PHP-Fusion Database Backup Disclosure	medium
14347	AWStats rawlog.pm logfile Parameter Arbitrary Command Execution	high
14338	Gallery save_photos.php Arbitrary Command Execution	high
14327	MyDMS < 1.4.3 Multiple Vulnerabilities	high
14325	ZixForum ZixForum.mdb DIrect Request Database Disclosure	medium
14324	Mantis < 0.18.3 / 0.19.0a2 Multiple Vulnerabilities	medium
14312	Trend Micro Scanmail for Domino nsf File Information Disclosure	medium
14300	Sympa wwsympa.fcgi Unauthorised List Creation	medium
14299	Sympa wwsympa Invalid LDAP Password Remote DoS	medium
14298	Sympa wwsympa do_search_list Overflow DoS	medium
14296	phpGroupWare Multiple Module SQL Injection	high
14295	phpGroupWare Calendar Module Holiday File Save Extension Feature Arbitrary File Execution	high
14294	phpGroupWare Unspecified Remote File Inclusion	high
14293	phpGroupWare Admin/Setup Password Plaintext Cookie Storage	medium
14292	phpGroupWare index.php Addressbook XSS	medium
14291	CVSTrac timeline.c timeline_page Function Overflow	high
14290	CVSTrac Ticket Title Arbitrary Command Execution	high
14289	CVSTrac Malformed URI Infinite Loop DoS	medium
14288	CVSTrac chdir() chroot Jail Escape	medium
14287	CVSTrac Invalid Ticket DoS	medium
14286	CVSTrac history.c history_update Function Overflow	high
14285	CVSTrac Database Plaintext Password Storage	medium
14284	CVSTrac cgi.c Multiple Overflows	high
14283	CVSTrac CVSROOT/passwd Arbitrary Account Deletion	medium
14224	Simple Form Multiple Parameter Arbitrary Mail Relaying	medium
14269	YaPiG < 0.92.2 Multiple Scripts Arbitrary Command Execution	high
14260	Nikto (NASL wrapper)	info
14258	phpMyFAQ index.php action Parameter Local File Inclusion	medium
14255	Microsoft Outlook Web Access (OWA) Version Detection	info
14308	BasiliX Application Detection	info
14306	Basilix Webmail tmp Directory Permission Weakness Attachment Disclosure	low
14305	Basilix Webmail Attachment Crafted POST Arbitrary File Access	medium
14304	BasiliX login.php3 username Variable Arbitrary Command Execution	medium
14237	GoScript go.cgi Arbitrary Command Execution	high
14233	ASPrunner 2.4 Multiple Vulnerabilities	high
14232	PSCS VPOP3 messagelist.html msglistlen Parameter DoS	medium
14226	phpBB Fetch All < 2.0.12 Multiple Scripts SQL Injection	high
14220	CVSTrac filediff Arbitrary Remote Code Execution	high
14219	Basilix Webmail id Variable SQL Injection	medium
14227	Snitz Forums 2000 < 3.4.03 register.asp Email Parameter SQL Injection	high
14222	RiSearch show.pl Arbitrary File Access	medium
14194	Nucleus CMS action.php itemid Parameter SQL Injection	high
14193	Polar HelpDesk Authentication Bypass	high

Detections

Analytics

CGI abuses Family for Nessus

high

high

medium

medium

high

high

medium

medium

high

high

high

medium

medium

medium

medium

medium

medium

high

high

high

medium

medium

high

high

medium

medium

medium

high

medium

high

medium

medium

high

info

medium

info

info

low

medium

medium

high

high

medium

high

high

medium

high

medium

high

high