CGI abuses Family for Nessus

ID	Name	Severity
157158	Atlassian Jira < 8.19.0 Broken Access Control (JRASERVER-72737)	medium
157152	Atlassian Jira < 8.21.0 Broken Access Control (JRASERVER-73071)	medium
157069	ThoughtWorks GoCD Default Administrator Access	critical
157068	GoCD < 21.3.0 Path Traversal (Direct)	critical
157066	GoCD < 21.3.0 Path Traversal	critical
156930	Jenkins plugins Multiple Vulnerabilities (2022-01-12)	high
156929	Jenkins LTS < 2.319.2 / Jenkins weekly < 2.330 Multiple Vulnerabilities	high
156893	Oracle Primavera Gateway (Jan 2022 CPU)	medium
156891	Oracle Primavera P6 Enterprise Project Portfolio Management (Jan 2022 CPU)	high
156863	Drupal 7.x < 7.86 / 9.2.x < 9.2.11 / 9.3.x < 9.3.3 Multiple Vulnerabilities (drupal-2022-01-19)	medium
156832	Oracle Primavera Unifier (Jan 2022 CPU)	critical
156753	Apache Druid Log4Shell Direct Check (CVE-2021-44228)	critical
156558	Apache JSPWiki Log4Shell Direct Check (CVE-2021-44228)	critical
156546	WordPress 5.8 < 5.8.3 / 5.7 < 5.7.5 / 5.6 < 5.6.7 / 5.5 < 5.5.8 / 5.4 < 5.4.9 / 5.3 < 5.3.11 / 5.2 < 5.2.14 / 5.1 < 5.1.12 / 5.0 < 5.0.15 / 4.9 < 4.9.19 / 4.8 < 4.8.18 / 4.7 < 4.7.22 / 4.6 < 4.6.22 / 4.5 < 4.5.25 / 4.4 < 4.4.26 / 4.3 < 4.3.27 / 4.2 < 4.2.31 / 4.1 < 4.1.34 / 4.0 < 4.0.34 / 3.9 < 3.9.35 / 3.8 < 3.8.37 / 3.7 < 3.7.37	high
156473	Apache OFBiz Log4Shell Direct Check (CVE-2021-44228)	critical
156471	Apache Solr Log4Shell Direct Check (CVE-2021-44228)	critical
156443	JQuery UI < 1.13.0 Multiple XSS	medium
156439	jQuery UI Detection	info
156208	SolarWinds Orion Platform 2020.2.6 < 2020.2.6 HF3 SQLI	high
156193	Adobe Connect <= 11.3 Arbitrary File System Write Vulnerability (APSB21-112)	medium
156016	Apache Log4Shell RCE detection via Path Enumeration (Direct Check HTTP)	critical
155961	SonicWall Secure Mobile Access Multiple Vulnerabilities (SNWLID-2021-0026)	critical
155864	ManageEngine ServiceDesk Plus < 11.3 Build 11306 / ManageEngine ServiceDesk Plus MSP < 10.5 Build 10530 RCE	critical
155841	Jenkins Enterprise and Operations Center < 2.222.43.0.2 / 2.249.30.0.2 / 2.263.2.3 Arbitrary File Read (CloudBees Security Advisory 2021-01-26)	medium
155735	Jenkins Plugins Multiple Vulnerabilities (Jenkins Security Advisory 2021-03-30)	high
155731	Liferay Portal 7.3.2 < 7.3.6 XSS	medium
155730	PHP 8.1.x < 8.1.0 Multiple Vulnerabilities	high
155717	ManageEngine ADAudit Plus Detection	info
155716	ManageEngine ADAudit Plus < Build 7006 File Upload RCE	critical
155715	Jenkins Enterprise and Operations Center < 2.222.43.0.1 / 2.249.30.0.1 / 2.263.2.2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-01-13)	high
155678	Liferay Portal 6.2.x < 6.2.5 / 7.0.x < 7.0.6 / 7.1.x < 7.1.3 / 7.2.x < 7.2.1 RCE	critical
155661	Jenkins Enterprise and Operations Center < 2.249.33.0.1 / 2.277.42.0.1 / 2.303.2.5 Multiple Vulnerabilities (CloudBees Security Advisory 2021-10-06)	medium
155633	Jenkins Enterprise and Operations Center < 2.222.43.0.3 rev2 / 2.249.30.0.3 rev2 / 2.277.1.2 rev2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-03-18)	high
155632	ManageEngine Log360 < Build 5235 Database Configuration Overwrite RCE	critical
155631	Jenkins Enterprise and Operations Center < 2.277.43.0.2 / 2.303.3.3 Multiple Vulnerabilities (CloudBees Security Advisory 2021-11-04)	critical
155630	Jenkins Enterprise and Operations Center < 2.222.43.0.2 rev3 / 2.249.30.0.2 rev3 / 2.263.4.1 rev2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-02-24)	high
155629	Jenkins Enterprise and Operations Center < 2.249.31.0.3 / 2.277.4.2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-05-05)	medium
155628	Jenkins Enterprise and Operations Center < 2.249.31.0.1-2 / 2.277.3.1-2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-04-21)	high
155627	Jenkins Git Plugin < 4.8.3 XSS	medium
155625	PHP 8.0.x < 8.0.13	medium
155600	Apache HTTP Server 2.4.49 & 2.4.50 Path Traversal (CVE-2021-42013)	critical
155590	PHP 7.3.x < 7.3.33	medium
155589	PHP 7.4.x < 7.4.26	medium
155587	Jenkins Enterprise and Operations Center < 2.249.31.0.1 / 2.277.3.1 DoS (CloudBees Security Advisory 2021-04-20)	high
155586	Jenkins Enterprise and Operations Center < 2.222.43.0.4 / 2.249.30.0.4 / 2.277.2.3 Multiple Vulnerabilities (CloudBees Security Advisory 2021-04-07)	medium
155584	Citrix ADC and Citrix NetScaler Gateway Multiple Vulnerabilities (CTX330728)	high
155559	Drupal 8.9.x < 8.9.20 / 9.1.x < 9.1.14 / 9.2.x < 9.2.9 Multiple Vulnerabilities (drupal-2021-11-17)	medium
155443	SolarWinds Orion Platform 2020.2.0 < 2020.2.6 HF1 Multiple Vulnerabilities XSS	critical
155442	SolarWinds Orion Platform 2020.2.0 < 2020.2.6 Multiple Vulnerabilities	high
155441	SolarWinds Orion Platform 2019.2 HF4 / 2019.4.2 / 2020.2.5 HF1 / 2020.2.6 / 2020.2.6 SQLI	high

Detections

Analytics

CGI abuses Family for Nessus

medium

medium

critical

critical

critical

high

high

medium

high

medium

critical

critical

critical

high

critical

critical

medium

info

high

medium

critical

critical

critical

medium

high

medium

high

info

critical

high

critical

medium

high

critical

critical

high

medium

high

medium

medium

critical

medium

medium

high

medium

high

medium

critical

high

high