CGI abuses Family for Nessus

ID	Name	Severity
128324	Atlassian JIRA worklog Information Disclosure	medium
128304	Citrix SD-WAN Center Unauthenticated Remote Command Injection	critical
128282	Atlassian JIRA Open Redirect Vulnerabilities	medium
128077	Joomla! 1.6.x < 3.9.11 Joomla 3.9.11 Release (5775-joomla-3-9-11)	medium
128055	Atlassian Bitbucket Data Center 5.13.x < 5.13.6 / 5.14.x < 5.14.4 / 5.15.x < 5.15.3 / 5.16.x < 5.16.3 / 6.0.x < 6.0.3 / 6.1.x < 6.1.2 Path Traversal Vulnerability (SA-2019-05-22)	critical
127911	Webmin 1.890 - 1.920 Remote Command Execution (CVE-2019-15107, CVE-2019-15231)	critical
127897	Pulse Secure Pulse Connect Secure SSL VPN Unauthenticated Path Traversal (CVE-2019-11510)	critical
127133	Zimbra Collaboration Server 8.7.x < 8.7.11p10 XML External Entity injection (XXE) vulnerability	critical
127132	PHP 7.3.x < 7.3.8 Multiple Vulnerabilities.	high
127131	PHP 7.2.x < 7.2.21 Multiple Vulnerabilities.	high
127130	PHP 7.1.x < 7.1.31 Multiple Vulnerabilities.	high
127127	Ansible Tower 3.3.x < 3.3.6 / 3.4.x < 3.4.4 / 3.5.x < 3.5.1 CRLF Vulnerability	medium
127126	Ansible Tower 3.x < 3.3.5 / 3.4.x < 3.4.3 Privilege Escalation Vulnerability	high
127125	Ansible Tower 3.x < 3.3.3 Unauthorized Access vulnerability	critical
127053	Jenkins < 2.176.2 LTS / 2.186 Multiple Vulnerabilities	high
126952	Drupal 8.7.4 Access Bypass Vulnerability (SA-CORE-2019-008) (drupal-2019-07-17)	critical
126829	Oracle Primavera Unifier Multiple Vulnerabilities (Jul 2019 CPU)	critical
126828	Oracle Primavera Gateway Multiple Vulnerabilities (Jul 2019 CPU)	critical
126780	Symantec Messaging Gateway 10.x < 10.7.1 Privilege Escalation Vulnerability (SYMSA1486)	critical
126705	phpMyAdmin 4.0 < 4.8.5 Multiple Vulnerabilities (PMASA-2019-1), (PMASA-2019-2)	critical
126637	PHP 7.3.x < 7.3.7 Multiple Vulnerabilities.	medium
126620	Atlassian JIRA Server & JIRA Data Center Template Injection Vulnerability	critical
126466	Citrix SD-WAN Appliance < 10.2.3 Unauthenticated Blind SQL Injection	critical
126447	Apache Solr 5.x <= 5.5.5 or 6.x <= 6.6.5 Deserialization Vulnerability (CVE-2019-0192)	critical
126382	WP Statistics Plugin for WordPress < 12.6.7 Blind SQL Injection	high
126053	Citrix Application Delivery Management Agent Information Disclosure	critical
126004	Cisco RV110W, RV130W, and RV215W Routers Syslog Disclosure (cisco-sa-20190619-rv-fileaccess)	medium
125923	Joomla 3.6.x < 3.9.7 Multiple Vulnerabilites	critical
125856	phpMyAdmin 4.x < 4.9.0 CSRF vulnerablity (PMASA-2019-4)	medium
125855	phpMyAdmin prior to 4.8.6 SQLi vulnerablity (PMASA-2019-3)	critical
125734	Jenkins < 2.121 / < 2.107.3 (LTS) Multiple Vulnerabilities	high
125733	Jenkins < 2.107 / < 2.89.4 (LTS) Server-Side Request Forgery (SSRF) Vulnerability	medium
125706	Jenkins < 2.84 / < 2.73.2 (LTS) Multiple Vulnerabilities	high
125681	PHP 7.3.x < 7.3.6 Multiple Vulnerabilities.	critical
125680	WordPress < 2.0.2 Multiple Cross-Site Scripting (XSS) Vulnerabilities	medium
125640	PHP 7.1.x < 7.1.30 Multiple Vulnerabilities.	critical
125639	PHP 7.2.x < 7.2.19 Multiple Vulnerabilities.	critical
125629	Atlassian Jira 7.13.x < 7.13.4, 8.0.x < 8.0.4, 8.1.x < 8.1.1 Multiple Vulnerabilities	high
125597	WordPress < 4.9.9 Remote Code Execution Vulnerabilities	high
125596	WordPress < 5.0.4 Directory Traversal Vulnerability	medium
125477	Atlassian Crowd 2.1.x < 3.0.5 / 3.1.x < 3.1.6 / 3.2.x < 3.2.8 / 3.3.x < 3.3.5 / 3.4.x < 3.4.4 RCE Vulnerability	critical
125373	Symantec Messaging Gateway 10.x < 10.7.0 Information Disclosure Vulnerability (SYMSA1482)	medium
125357	Symantec (Blue Coat) Reporter Denial of Service vulnerability (SYMSA1280)	medium
125342	iLO 4 < 2.70 / iLO 5 < 1.40a Multiple Vulnerabilities	high
125258	Citrix ADC and Citrix NetScaler Gateway buffer overflow vulnerability (CTX249976)	high
124772	Atlassian JIRA Multiple Vulnerabilities (JRASERVER-69245) (JRASERVER-69246)	high
124771	Atlassian JIRA Cross-Site Scripting (XSS) Vulnerability (JRASERVER-68614)	medium
124770	Atlassian JIRA Server-Side Request Forgery (SSRF) Vulnerability (JRASERVER-68527)	medium
124769	Atlassian JIRA Cross-Site Scripting (XSS) Vulnerability (JRASERVER-68526)	medium
124764	PHP 7.3.x < 7.3.5 Heap-based Buffer Overflow Vulnerability.	critical

Detections

Analytics

CGI abuses Family for Nessus

medium

critical

medium

medium

critical

critical

critical

critical

high

high

high

medium

high

critical

high

critical

critical

critical

critical

critical

medium

critical

critical

critical

high

critical

medium

critical

medium

critical

high

medium

high

critical

medium

critical

critical

high

high

medium

critical

medium

medium

high

high

high

medium

medium

medium

critical