CGI abuses Family for Nessus

ID	Name	Severity
35787	Zabbix Web Interface extlang[] Parameter Remote Code Execution	high
35786	Zabbix Web Interface Detection	info
35765	Coppermine Photo Gallery keysToSkip Parameter Overwrite	medium
35751	Drupal Theme System Template Local File Inclusion	high
35750	PHP < 5.2.9 Multiple Vulnerabilities	medium
35749	Moodle Forum 'post.php' Unauthorized Post Deletion CSRF	medium
35661	SquirrelMail HTTPS Session Cookie Secure Flag Weakness	medium
35657	HP OpenView Network Node Manager webappmon.exe Command Injection (c01661610)	high
35656	HP OpenView Network Node Manager ovlaunch.exe Information Disclosure (c01661610)	medium
35655	TYPO3 'jumpUrl' Mechanism Information Disclosure	medium
35649	Trend Micro InterScan Web Security Suite Default Credentials	high
35628	Openfire < 3.6.3 Multiple Vulnerabilities	medium
35618	Sun OpenSSO / Java System Access Manager Login Module User Account Enumeration Weakness	medium
35610	Jaws language Parameter Multiple Local File Includes	high
35609	SocialEngine Blog Plugin category_id Parameter SQL Injection	high
35600	Meeting Room Booking System (MRBS) month.php area Parameter SQL Injection	high
35587	phpSlash fields Parameter PHP Code Injection	high
35580	Profense Web Application Firewall Default Credentials	high
35557	OpenX fc.php MAX_type Parameter Traversal Local File Inclusion	high
35554	Horde Horde_Image::factory driver Argument Local File Inclusion	high
35474	gigCalendar Component for Joomla! 'gigcal_gigs_id' Parameter SQLi	medium
35435	Eventing Component for Joomla! 'catid' Parameter SQLi	high
35402	phpList <= 2.10.8 Variable Overwriting	high
35370	WP-Forum Plugin for WordPress 'forum_feed.php' 'thread' Parameter SQL Injection	high
35363	Oracle Secure Backup Administration Server login.php Arbitrary Command Injection	critical
35326	XOOPS Multiple Scripts mydirname Parameter Arbitrary Command Injection	high
35321	XStandard Lite Plugin for Joomla! X_CMS_LIBRARY_PATH Header Directory Traversal	medium
35278	XOOPS xoopsConfig[language] Parameter Local File Inclusion (DSECRG-08-040)	medium
35273	RoundCube Webmail bin/html2text.php Post Request Remote PHP Code Execution	high
35262	Pligg evb/check_url.php url Parameter SQL Injection	medium
35261	OneOrZero Helpdesk tinfo.php Arbitrary File Upload	high
35259	phpList cline Parameter Array Remote File Inclusion	high
35224	Barracuda Spam Firewall < 3.5.12.007 Multiple Vulnerabilities	medium
35109	Live Chat Component for Joomla! 'last' Parameter Multiple SQLi	high
35105	Sun Java System Identity Manager Default Credentials	high
35104	Sun Java System Identity Manager Detection	info
35090	Moodle 'filter/tex/texed.php' 'pathname' Parameter Remote Command Execution	medium
35067	PHP < 5.2.8 Multiple Vulnerabilities	high
35060	phpPgAdmin index.php _language Parameter Local File Inclusion	medium
35043	PHP 5 < 5.2.7 Multiple Vulnerabilities	high
35041	Oempro index.php FormValue_Email Parameter SQL Injection Authentication Bypass	high
35029	Dell Remote Access Controller Default Password (calvin) for 'root' Account	critical
35008	OraMon config/oramon.ini Information Disclosure	medium
34992	CMS Made Simple admin/login.php cms_language Cookie Local File Inclusion	medium
34947	Apache Struts 2 devMode Information Disclosure	medium
34946	Apache Struts 2 < 2.0.12 / 2.1.3 Dispatcher Directory Traversal	high
34726	PHPWebAdmin for hMailServer Multiple File Inclusions	medium
34725	Openfire AuthCheck Authentication Bypass	high
34507	Eaton Network Shutdown Module < 3.20 Authentication Bypass / Command Execution	critical
34448	yappa-ng index.php album Parameter Local File Inclusion	medium

Detections

Analytics

CGI abuses Family for Nessus

high

info

medium

high

medium

medium

medium

high

medium

medium

high

medium

medium

high

high

high

high

high

high

high

medium

high

high

high

critical

high

medium

medium

high

medium

high

high

medium

high

high

info

medium

high

medium

high

high

critical

medium

medium

medium

high

medium

high

critical

medium