CGI abuses Family for Nessus

ID	Name	Severity
121357	Kibana ESA-2018-08	medium
121353	PHP 7.2.x < 7.2.14 Multiple vulnerabilities.	critical
121352	VMware ESX / ESXi Remotely Accessible Method Object Browser API	critical
121351	VMware ESX / ESXi host Directory Configuration Files Information Disclosure	medium
121350	VMware ESX / ESXi Web-Based Datastore Browser Default Credentials	critical
121330	Jenkins < 2.150.2 LTS / 2.160 Multiple Vulnerabilities	high
121312	Logstash ESA-2018-01	medium
121256	Joomla! Extension Detection	info
121255	Joomla! Extension 'JCK Suite' - 'jckeditor' =< 6.4.4 Privilege Escalation	high
121254	Symantec (Blue Coat) Reporter CLI OS Command Injection Vulnerability (SYMSA1465)	high
121252	Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (Jan 2019 CPU)	medium
121251	Oracle Primavera Unifier Multiple Vulnerabilities (Jan 2019 CPU)	critical
121249	Elasticsearch ESA-2018-19	medium
121232	EMC RSA Authentication Manager < 8.4 Relative Path Traversal (DSA-2018-226)	high
121214	Drupal 7.x < 7.62 / 8.5.x < 8.5.9 / 8.6.x < 8.6.6 Multiple Vulnerabilities (SA-CORE-2019-001, SA-CORE-2019-002)	critical
121188	Joomla! < 3.9.2 Multiple Stored XSS Vulnerabilities	medium
121166	Kibana ESA-2018-03	medium
121165	Kibana ESA-2018-05	medium
121164	Splunk Information Disclosure Vulnerability (SP-CAAAP5E)	medium
121163	Splunk Information Exposure (SP-CAAAP5E	medium
121110	Adobe Connect <= 9.8.1 Exposure Of The Privileges Granted To A Session Vulnerability (APSB19-05)	medium
121064	EMC RSA Archer 6.x < 6.4.10500.1006 Authorization Bypass Vulnerability	medium
122599	Credit Card Disclosure over HTTP	medium
121043	Splunk Enterprise 6.0.x < 6.0.14 / 6.1.x < 6.1.13 / 6.2.x < 6.2.14 / 6.3.x < 6.3.11 / 6.4.x < 6.4.8 / 6.5.x < 6.5.3 or Splunk Light < 6.6.0 Multiple Vulnerabilities	medium
121041	Sensitive File Disclosure	medium
121040	Open Redirect	medium
121039	Missing Function Level Access Control	critical
121038	Authentication Bypass (Forced Browse)	critical
121037	Directory Traversal	critical
121036	OS Command Injection	critical
119888	Cisco Webex Meetings Desktop App < 33.6.4 Command Injection Vulnerability	high
119833	Dell iDRAC Products Multiple Vulnerabilities (December 2018)	high
119778	Flask < 0.12.3 Denial of Service Vulnerability	high
119766	PHP 7.2.x < 7.2.13 Multiple vulnerabilities	high
119765	PHP 7.1.x < 7.1.25 Multiple vulnerabilities	high
119764	PHP 5.6.x < 5.6.39 Multiple vulnerabilities	high
119728	Apache Struts 2 'method:' Prefix Arbitrary Remote Command Execution	high
119677	Kubernetes proxy request handling vulnerability (CVE-2018-1002105)	critical
119615	WordPress < 4.9.9 / 5.x < 5.0.1 Multiple Vulnerabilities	critical
119601	phpMyAdmin 4.x < 4.8.4 Multiple Vulnerabilities (PMASA-2018-6) (PMASA-2018-8)	medium
119600	phpMyAdmin 4.7.x <= 4.7.6 / 4.8.x < 4.8.4 Multiple XSRF/CSRF Vulnerabilities (PMASA-2018-7)	high
119500	Jenkins < 2.138.4 LTS / 2.150.1 LTS / 2.154 Multiple Vulnerabilities	critical
119499	Elasticsearch ESA-2015-06	critical
119461	Logstash ESA-2014-02	high
119460	Logstash ESA-2015-04	medium
119422	Kibana ESA-2018-17	critical
119327	Kubernetes 1.x < 1.10.11 / 1.11.x < 1.11.5 / 1.12.x < 1.12.3 API Server Privilege Escalation	critical
119015	VMware vRealize Log Insight 4.6.x < 4.6.2 / 4.7.x < 4.7.1 Authorization Bypass Vulnerability (VMSA-2018-0028)	high
118977	WordPress Plugin 'AMP for WP - Accelerated Mobile Pages' < 0.9.97.20 Multiple Vulnerabilities	medium
118935	WordPress Plugin 'WP GDPR Compliance' < 1.4.3 Privilege Escalation	critical

Detections

Analytics

CGI abuses Family for Nessus

medium

critical

critical

medium

critical

high

medium

info

high

high

medium

critical

medium

high

critical

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

critical

critical

critical

critical

high

high

high

high

high

high

high

critical

critical

medium

high

critical

critical

high

medium

critical

critical

high

medium

critical