Detections
Analytics

CGI abuses : XSS Family for Nessus

IDNameSeverity
108552Webmin 1.370 / 1.390 webmin_search.cgi Cross Site Scripting
medium
108551Webmin < 1.350 pam_login.cgi Cross Site Scripting
medium
108541Webmin chooser.cgi Cross-Site Scripting (< 1.330)
medium
108488IBM WebSphere Portal XSS Vulnerability
medium
108487IBM WebSphere Portal XSS Vulnerability
medium
107260IBM WebSphere Portal Reflected XSS Vulnerability
medium
106949Atlassian Confluence < 6.6.1 viewdefaultdecorator Reflected XSS (CVE-2017-18085)
medium
106948Atlassian Confluence < 6.4.2 issuesURL Parameter Reflected XSS (CVE-2017-18086)
medium
106947Atlassian Confluence < 6.3.4 usermacros Reflected XSS (CVE-2017-18084)
medium
106657JQuery 1.x < 1.12.0 / 2.x < 2.2.0 XSS
medium
106656JQuery 1.6.x < 1.6.3 XSS
medium
106506pfSense 2.3.x < 2.3.5 / 2.4.x < 2.4.2 Multiple XSS Vulnerabilites (SA-17_08 / SA-17_09)
high
106492pfSense < 2.2 Multiple XSS Vulnerabilities (SA-15_01)
medium
106396IBM WebSphere Portal 9.0.0.x < 9.0.0.0 CF15 Unspecified XSS (PI92039)
medium
106395IBM WebSphere Portal 8.5.0.x < 8.5.0.0 CF15 Unspecified XSS (PI92039)
medium
105258Gallery Bank Plugin for WordPress < 2.0.20 XSS
low
105256Check_MK Internal Server Error XSS
medium
102996IBM WebSphere Portal XSS (swg22008028)
medium
102731Splunk Enterprise 6.6.x < 6.6.3 / Splunk Light 6.6.x < 6.6.3 Multiple XSS
medium
102176IBM WebSphere Portal 8.0.0.x < 8.0.0.1 CF22 Unspecified XSS (PI80564)
medium
102175IBM WebSphere Portal 7.0.0.x < 7.0.0.2 CF30 Unspecified XSS (PI80564)
medium
101846EMC RSA Authentication Manager < 8.2 SP1 Patch 1 Token Profile Name Stored XSS (ESA-2017-068)
medium
101089Check_MK < 1.4.0p6 webapi.py XSS
medium
100872Sophos Web Appliance < 4.3.2 FTP Redirect Page Reflected XSS
medium
100845Sophos Web Appliance < 4.3.0 FTP Redirect Page Reflected XSS
medium
97417McAfee ePolicy Orchestrator 5.1.x < 5.1.3 HF1110787 Computer Management Services XSS (SB10184)
medium
97193Tenable Nessus 6.8.x and 6.9.x < 6.9.1 Stored XSS (TNS-2016-17)
medium
97192Tenable Nessus 6.x < 6.9 Multiple Vulnerabilities (TNS-2016-16) (SWEET32)
critical
96833Tenable Nessus 6.x < 6.9.3 Multiple Stored XSS
medium
94759Adobe Connect <= 9.5.6 Vulnerability (APSB16-35)
medium
92841VMware vRealize Log Insight 2.x / 3.x < 3.3.2 Multiple Vulnerabilities (VMSA-2016-0008)
high
91989ManageEngine ADSelfService Plus < 5.3 Build 5313 PasswordSelfServiceAPI XSS
medium
91713VMware vCenter Server 5.0.x < 5.0u3g / 5.1.x < 5.1u3d / 5.5.x < 5.5u2d Reflected XSS (VMSA-2016-0009)
medium
91460BlackBerry Enterprise Service (BES) Management Console 12.x < 12.4.1 Multiple XSS
medium
90835McAfee Email Gateway 7.6.x < 7.6.404 Blocked Email Alert XSS (SB10153)
medium
90763VMware vRealize Automation 6.x < 6.2.4 Unspecified Stored XSS (VMSA-2016-0003)
medium
90537Piwik < 2.16.0 Unspecified XSS
medium
90445ManageEngine Firewall Analyzer Multiple XSS
medium
90351VMware vRealize Business Unspecified Stored XSS (VMSA-2016-0003)
medium
90247Apache Jetspeed Portal URI Path Reflected XSS
medium
88965Nessus Web UI Scanned Content Stored XSS
medium
88904Tenable Nessus < 6.5.5 Host Details Scan Results XSS
low
88842Fortinet FortiWeb 5.1.2 < 5.3.5 Autolearn Configuration Multiple XSS
medium
88840Fortinet FortiADC Model D < 4.2 Theme Login Page XSS
medium
86804ManageEngine AssetExplorer < 6.1.0 Build 6113 Multiple XSS
low
86471Fortinet FortiManager FortiOS 5.0.x >= 5.0.3 and < 5.0.11 Dataset Reports XSS
medium
86470Fortinet FortiAnalyzer FortiOS 5.0.x < 5.0.11 / 5.2.x < 5.2.2 Dataset Reports XSS
medium
86445DNN (DotNetNuke) < 7.4.2 Multiple Vulnerabilities
medium
86020Joomla! 3.4.x < 3.4.4 Login Module XSS
medium
85962Splunk Enterprise 6.2.x < 6.2.6 / Splunk Light 6.2.x < 6.2.6 Splunk Web XSS
medium