CGI abuses Family for Nessus

ID	Name	Severity
155305	D-Link DIR-825 R1 Device < 3.0.2 RCE (CVE-2020-29557)	critical
155026	WordPress 5.8 < 5.8.2 / 5.7 < 5.7.4 / 5.6 < 5.6.6 / 5.5 < 5.5.7 / 5.4 < 5.4.8 / 5.3 < 5.3.10 / 5.2 < 5.2.13	high
154981	Buffalo Router Path Traversal (CVE-2021-20090)	critical
154965	Jenkins Enterprise and Operations Center < 2.249.31.0.4 / 2.277.4.3 Multiple Vulnerabilities (CloudBees Security Advisory 2021-05-11)	high
154964	ManageEngine ADSelfServicePlus Authentication Bypass (CVE-2021-40539)	critical
154935	Nagios XI < 5.6.6 RCE	high
154933	Accellion File Transfer Appliance < 9_12_416 Multiple Vulnerabilities	critical
154894	Jenkins LTS < 2.303.3 / Jenkins weekly < 2.319 Multiple Vulnerabilities	critical
154879	GitLab 7.12.x < 13.8.8 / 13.9.x < 13.9.6 / 13.10.x < 13.10.3 RCE	critical
154728	DNN (DotNetNuke) 9.2 <= 9.2.2 Weak Encryption Algorithm Vulnerability	high
154663	PHP 7.3.x < 7.3.32	high
154656	PHP 7.4.x < 7.4.24 Arbitrary File Write	medium
154650	PHP 7.3.x < 7.3.31 Arbitrary File Write	medium
154349	PHP 7.4.x < 7.4.25	high
154339	SolarWinds Orion Platform < 2020.2.6 HF1 Multiple Vulnerabilities	critical
154297	Oracle Primavera Gateway (Oct 2021 CPU)	high
154296	PHP 8.0.x < 8.0.12	high
154267	Oracle MySQL Enterprise Monitor (Oct 2021 CPU)	high
154262	Oracle Primavera Unifier (Oct 2021 CPU)	high
154244	Atlassian Confluence Server Arbitrary File Read (CVE-2021-26085)	medium
154144	Adobe Connect <= 11.2.3 Multiple Arbitrary Code Execution Vulnerabilities (APSB21-91)	medium
154057	Atlassian Jira Unauthenticated User Enumeration (CVE-2020-36289)	medium
154056	Atlassian JIRA < 8.5.15 / 8.6.x < 8.13.7 / 8.14.x < 8.17.0 Unauth User Enum (JRASERVER-71559)	medium
154055	Jenkins LTS < 2.303.2 / Jenkins weekly < 2.315 Multiple Vulnerabilities	medium
153981	Jenkins Enterprise and Operations Center < 2.249.32.0.1 / 2.277.41.0.1 / 2.303.1.5 Bad Permissions (CloudBees Security Advisory 2021-08-25)	low
153978	Jenkins Enterprise and Operations Center < 2.289.3.2 rev 2 Bad Permissions (CloudBees Security Advisory 2021-08-02)	low
153977	Jenkins Enterprise and Operations Center < 2.249.31.0.6 / 2.277.40.0.1 / 2.289.2.2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-06-30)	high
153976	Jenkins Enterprise and Operations Center < 2.249.31.0.5 / 2.289.1.2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-06-02)	medium
153890	Jenkins Enterprise and Operations Center < 2.249.32.0.2 / 2.277.41.0.2 / 2.303.1.6 Multiple Vulnerabilities (CloudBees Security Advisory 2021-08-31)	high
153885	Apache HTTP Server 2.4.49 Path Traversal (CVE-2021-41773)	high
153848	ManageEngine EventLog Analyzer < Build 12201 REST API Restriction Bypass RCE	critical
153807	SonicWall Secure Mobile Access Arbitrary File Delete (SNWLID-2021-0021)	critical
153636	ManageEngine Log360 < Build 5229 REST API Restriction Bypass RCE	critical
153635	ManageEngine Log360 Detection	info
153612	Nagios XI < 5.8.5 Multiple Vulnerabilities	critical
153490	Liferay Portal 7.3.5 Stored XSS	medium
153402	Drupal 8.9.x < 8.9.19 / 9.1.x < 9.1.13 / 9.2.x < 9.2.6 Multiple Vulnerabilities (drupal-2021-09-15)	critical
153176	Citrix ADM Authentication Bypass (CTX247738)	critical
153175	Citrix ADM Authentication Bypass (CTX261735)	high
153173	WordPress 5.8 < 5.8.1 / 5.7 < 5.7.3 / 5.6 < 5.6.5 / 5.5 < 5.5.6 / 5.4 < 5.4.7 / 5.2 < 5.2.12	high
153158	ManageEngine ADManager Plus Detection	info
153157	ManageEngine ADManager Plus < 7111 RCE	critical
153147	ManageEngine ADSelfService Plus < build 6114 REST API Authentication Bypass	critical
153087	Atlassian Confluence Server Webwork OGNL Injection (CVE-2021-26084)	critical
152984	Joomla 4.0 < 4.0.1 Insufficient Access Control (5846-joomla-4-0-1)	critical
152865	Atlassian JIRA < 8.5.14 / 8.6.x < 8.13.6 / 8.14.x < 8.16.1 XSS (JRASERVER-72392)	medium
152864	Atlassian Confluence < 6.13.23 / 6.14 < 7.4.11 / 7.5 < 7.11.6 / 7.12 < 7.12.5 Webwork OGNL Injection (CONFSERVER-67940)	critical
152853	PHP < 7.3.28 Email Header Injection	medium
152680	ManageEngine ADSelfService Plus < Build 6102 RCE	critical
152534	VMware Workspace One Access / VMware Identity Manager Multiple Vulnerabilities (VMSA-2021-0016)	critical

Detections

Analytics

CGI abuses Family for Nessus

critical

high

critical

high

critical

high

critical

critical

critical

high

high

medium

medium

high

critical

high

high

high

high

medium

medium

medium

medium

medium

low

low

high

medium

high

high

critical

critical

critical

info

critical

medium

critical

critical

high

high

info

critical

critical

critical

critical

medium

critical

medium

critical

critical