CGI abuses Family for Nessus

ID	Name	Severity
11182	DB4Web Server db4web_c Filename Request Traversal Arbitrary File Access	medium
11180	DB4Web Server Debug Mode TCP Port Scanning Proxy	medium
10541	KW Whois CGI whois Parameter Arbitrary Command Execution	high
11176	Apache Tomcat Catalina org.apache.catalina.servlets.DefaultServlet Source Code Disclosure	medium
11173	Savant Web Server cgitest.exe Overflow	high
11165	vpopmail-CGIApps vpasswd.cgi Remote Command Execution	critical
11163	MondoSearch MsmMask.exe Arbitrary Script Source Disclosure	medium
11151	Webserver 4D Plaintext Password Storage	low
11131	Sambar Server Multiple CGI Remote Overflow	medium
11117	phpPgAdmin sql.php goto Parameter Traversal Arbitrary File Access	medium
11116	phpMyAdmin sql.php Traversal Arbitrary File Access	medium
11115	Gallery includedir Parameter Remote File Inclusion	high
10277	AnyForm CGI Arbitrary Command Execution	high
11109	Achievo class.atkdateattribute.js.php config_atkroot Parameter Remote File Inclusion	high
11107	Viralator CGI Script Arbitrary Command Execution	high
11106	PHP-Nuke Network Tools Add-On Arbitrary Command Execution	high
11104	Directory Manager edit_image.php Arbitrary Command Execution	high
11102	AWOL helperfunction.php includedir Parameter Remote File Inclusion	high
11101	phpAdsNew helperfunction.php Remote File Inclusion	high
11095	Mountain Network Systems webcart.cgi Arbitrary Command Execution	high
11083	iBill ibillpm.pl Password Generation Weakness	high
11082	Boozt index.cgi Banner Creation Name Field Overflow	high
11074	Trend Micro OfficeScan ofcscan.ini Configuration File Disclosure	medium
11073	Cobalt Qube WebMail readmsg.php mailbox Parameter Traversal Arbitrary File Access	medium
11072	Basilix Webmail basilix.php3 request_id[DUMMY] Variable Traversal Arbitrary File Access	high
11070	PGPMail.pl detection	high
11066	Sun Sunsolve CD Pack sscd_suncourier.pl email Parameter Arbitrary Command Execution	critical
11050	PHP < 4.2.x mail Function CRLF Injection	high
11046	Apache Tomcat TroubleShooter Servlet Information Disclosure	medium
11044	Icecast list_directory Function Traversal File/Directory Enumeration	medium
11037	Multiple Server Crafted Request WEB-INF Directory Information Disclosure	medium
11027	AlienForm2 alienform.cgi Traversal Arbitrary File Manipulation	medium
11020	IBM Net.Commerce orderdspc.d2w order_rn Option SQL Injection	high
11018	Microsoft Site Server Multiple Script Information Disclosure	medium
11007	ActivePerl findtar Sample Script Remote Command Execution	critical
11017	Marcus Xenakis directory.php Execute Arbitrary Commands	critical
11004	Ipswitch WhatsUp Gold Default Admin Account	high
11001	MRTG mrtg.cgi cfg Parameter Traversal Arbitrary Files Access	medium
10997	JRun Web Server (JWS) GET Request Traversal Arbitrary File Access	medium
10996	JRun Multiple Sample Files Remote Information Disclosure	medium
10995	Sun JavaServer Default Admin Password	high
10993	Microsoft ASP.NET Application Tracing trace.axd Information Disclosure	medium
10991	Microsoft IIS global.asa Remote Information Disclosure	low
10968	ping.asp CGI Arbitrary Command Execution	high
10960	ServletExec 4.1 ISAPI com.newatlanta.servletexec.JSP10Servlet Path Disclosure	medium
10959	ServletExec 4.1 ISAPI com.newatlanta.servletexec.JSP10Servlet Traversal Arbitrary File Access	medium
10958	ServletExec 4.1 / JRun ISAPI Multiple DoS	critical
10949	BEA WebLogic Null Byte Request JSP Source Disclosure	medium
10936	Microsoft IIS Multiple Vulnerabilities (MS02-018)	medium
10924	csSearch csSearch.cgi setup Parameter Arbitrary Command Execution	high

Detections

Analytics

CGI abuses Family for Nessus

medium

medium

high

medium

high

critical

medium

low

medium

medium

medium

high

high

high

high

high

high

high

high

high

high

high

medium

medium

high

high

critical

high

medium

medium

medium

medium

high

medium

critical

critical

high

medium

medium

medium

high

medium

low

high

medium

medium

critical

medium

medium

high