CGI abuses Family for Nessus

ID	Name	Severity
127127	Ansible Tower 3.3.x < 3.3.6 / 3.4.x < 3.4.4 / 3.5.x < 3.5.1 CRLF Vulnerability	medium
127126	Ansible Tower 3.x < 3.3.5 / 3.4.x < 3.4.3 Privilege Escalation Vulnerability	high
127125	Ansible Tower 3.x < 3.3.3 Unauthorized Access vulnerability	critical
127053	Jenkins < 2.176.2 LTS / 2.186 Multiple Vulnerabilities	high
126952	Drupal 8.7.4 Access Bypass Vulnerability (SA-CORE-2019-008) (drupal-2019-07-17)	critical
126829	Oracle Primavera Unifier Multiple Vulnerabilities (Jul 2019 CPU)	critical
126828	Oracle Primavera Gateway Multiple Vulnerabilities (Jul 2019 CPU)	critical
126780	Symantec Messaging Gateway 10.x < 10.7.1 Privilege Escalation Vulnerability (SYMSA1486)	critical
126705	phpMyAdmin 4.0 < 4.8.5 Multiple Vulnerabilities (PMASA-2019-1), (PMASA-2019-2)	critical
126637	PHP 7.3.x < 7.3.7 Multiple Vulnerabilities.	medium
126620	Atlassian JIRA Server & JIRA Data Center Template Injection Vulnerability	critical
126466	Citrix SD-WAN Appliance < 10.2.3 Unauthenticated Blind SQL Injection	critical
126447	Apache Solr 5.x <= 5.5.5 or 6.x <= 6.6.5 Deserialization Vulnerability (CVE-2019-0192)	critical
126382	WP Statistics Plugin for WordPress < 12.6.7 Blind SQL Injection	high
126053	Citrix Application Delivery Management Agent Information Disclosure	critical
126004	Cisco RV110W, RV130W, and RV215W Routers Syslog Disclosure (cisco-sa-20190619-rv-fileaccess)	medium
125923	Joomla 3.6.x < 3.9.7 Multiple Vulnerabilites	critical
125856	phpMyAdmin 4.x < 4.9.0 CSRF vulnerablity (PMASA-2019-4)	medium
125855	phpMyAdmin prior to 4.8.6 SQLi vulnerablity (PMASA-2019-3)	critical
125734	Jenkins < 2.121 / < 2.107.3 (LTS) Multiple Vulnerabilities	high
125733	Jenkins < 2.107 / < 2.89.4 (LTS) Server-Side Request Forgery (SSRF) Vulnerability	medium
125706	Jenkins < 2.84 / < 2.73.2 (LTS) Multiple Vulnerabilities	high
125681	PHP 7.3.x < 7.3.6 Multiple Vulnerabilities.	critical
125680	WordPress < 2.0.2 Multiple Cross-Site Scripting (XSS) Vulnerabilities	medium
125640	PHP 7.1.x < 7.1.30 Multiple Vulnerabilities.	critical
125639	PHP 7.2.x < 7.2.19 Multiple Vulnerabilities.	critical
125629	Atlassian Jira 7.13.x < 7.13.4, 8.0.x < 8.0.4, 8.1.x < 8.1.1 Multiple Vulnerabilities	high
125597	WordPress < 4.9.9 Remote Code Execution Vulnerabilities	high
125596	WordPress < 5.0.4 Directory Traversal Vulnerability	medium
125477	Atlassian Crowd 2.1.x < 3.0.5 / 3.1.x < 3.1.6 / 3.2.x < 3.2.8 / 3.3.x < 3.3.5 / 3.4.x < 3.4.4 RCE Vulnerability	critical
125373	Symantec Messaging Gateway 10.x < 10.7.0 Information Disclosure Vulnerability (SYMSA1482)	medium
125357	Symantec (Blue Coat) Reporter Denial of Service vulnerability (SYMSA1280)	medium
125342	iLO 4 < 2.70 / iLO 5 < 1.40a Multiple Vulnerabilities	high
125258	Citrix ADC and Citrix NetScaler Gateway buffer overflow vulnerability (CTX249976)	high
124772	Atlassian JIRA Multiple Vulnerabilities (JRASERVER-69245) (JRASERVER-69246)	high
124771	Atlassian JIRA Cross-Site Scripting (XSS) Vulnerability (JRASERVER-68614)	medium
124770	Atlassian JIRA Server-Side Request Forgery (SSRF) Vulnerability (JRASERVER-68527)	medium
124769	Atlassian JIRA Cross-Site Scripting (XSS) Vulnerability (JRASERVER-68526)	medium
124764	PHP 7.3.x < 7.3.5 Heap-based Buffer Overflow Vulnerability.	critical
124763	PHP 7.2.x < 7.2.18 Heap-based Buffer Overflow Vulnerability.	critical
124762	PHP 7.1.x < 7.1.29 Heap-based Buffer Overflow Vulnerability.	critical
124719	JQuery < 3.4.0 Object Prototype Pollution Vulnerability	medium
124698	Drupal 7.0.x < 7.67 / 8.6.x < 8.6.16 / 8.7.x < 8.7.1 Drupal Vulnerability (SA-CORE-2019-007)	critical
124682	Joomla! prior to 3.9.6 Cross-Site Scripting (XSS) Vulnerability	medium
124367	WePresent file_transfer.cgi Remote Command Execution	critical
124330	Atlassian Confluence < 6.13.1 Information Disclosure Vulnerability	medium
124281	Atlassian Confluence < 6.6.13 / 6.7.x < 6.12.4 / 6.13.x < 6.13.4 / 6.14.x < 6.14.3 / 6.15.x < 6.15.2 Directory Traversal Vulnerability	high
124239	DNN (DotNetNuke) 7.0.0 < 9.3.1 Multiple Vulnerabilities	medium
124176	Drupal 7.x < 7.66 / 8.5.x < 8.5.15 / 8.6.x < 8.6.15 Multiple Vulnerabilities (drupal-2019-04-17)	critical
124170	Oracle Primavera Unifier Multiple Vulnerabilities (Apr 2019 CPU)	critical

Detections

Analytics

CGI abuses Family for Nessus

medium

high

critical

high

critical

critical

critical

critical

critical

medium

critical

critical

critical

high

critical

medium

critical

medium

critical

high

medium

high

critical

medium

critical

critical

high

high

medium

critical

medium

medium

high

high

high

medium

medium

medium

critical

critical

critical

medium

critical

medium

critical

medium

high

medium

critical

critical