CGI abuses Family for Nessus

ID	Name	Severity
14782	YaBB 1 GOLD SP 1.3.2 Multiple Vulnerabilities	low
14770	PHP rfc1867.c $_FILES Array Crafted MIME Header Arbitrary File Upload	low
14733	PerlDesk pdesk.cgi lang Parameter Traversal Arbitrary File Access	medium
14722	WebLogic < 8.1 SP3 Multiple Vulnerabilities	high
14719	Turbo Seek tseekdir.cgi location Parameter Arbitrary File Access	medium
14715	OpenCA crypto-utils.lib libCheckSignature Function Signature Validation Weakness	high
14714	OpenCA Multiple Signature Validation Bypass	high
14713	Simple Form Subject Tags Arbitrary Mail Relay	medium
14656	MailEnable Professional HTTPMail GET Request Remote Overflow	medium
14655	MailEnable HTTPMail Service Content-Length Header Overflow	critical
14654	MailEnable HTTPMail Service Authorization Header Handling Remote DoS	medium
14636	IlohaMail Unspecified Database Password Disclosure Weakness	medium
14635	IlohaMail Multiple External Programs Arbitrary Command Execution	high
14633	IlohaMail Forged GET/POST Arbitrary Contacts Deletion	medium
14632	IlohaMail Attachment Arbitrary File Create/Overwrite	medium
14631	IlohaMail index.php session Parameter Arbitrary File Access	medium
14630	IlohaMail index.php init_lang Parameter Arbitrary File Access	medium
14629	IlohaMail Software Detection	info
14615	TorrentTrader download.php id Parameter SQL Injection	high
14382	WebMatic Unspecified Login Function Access Vulnerability	high
14379	Merak Webmail / IceWarp Web Mail < 5.2.8 Multiple Vulnerabilities	high
14370	HastyMail HTML Attachment Script Execution	medium
14365	WebAPP Directory Traversal	medium
14364	TikiWiki < 1.8.2 Multiple Input Validation Vulnerabilities	high
14363	INL ulog-php port.php proto Parameter SQL Injection	high
14359	TikiWiki Unauthorized Page Access	medium
14356	PHP-Fusion Database Backup Disclosure	medium
14347	AWStats rawlog.pm logfile Parameter Arbitrary Command Execution	high
14338	Gallery save_photos.php Arbitrary Command Execution	high
14327	MyDMS < 1.4.3 Multiple Vulnerabilities	high
14325	ZixForum ZixForum.mdb DIrect Request Database Disclosure	medium
14324	Mantis < 0.18.3 / 0.19.0a2 Multiple Vulnerabilities	medium
14312	Trend Micro Scanmail for Domino nsf File Information Disclosure	medium
14300	Sympa wwsympa.fcgi Unauthorised List Creation	medium
14299	Sympa wwsympa Invalid LDAP Password Remote DoS	medium
14298	Sympa wwsympa do_search_list Overflow DoS	medium
14296	phpGroupWare Multiple Module SQL Injection	high
14295	phpGroupWare Calendar Module Holiday File Save Extension Feature Arbitrary File Execution	high
14294	phpGroupWare Unspecified Remote File Inclusion	high
14293	phpGroupWare Admin/Setup Password Plaintext Cookie Storage	medium
14292	phpGroupWare index.php Addressbook XSS	medium
14291	CVSTrac timeline.c timeline_page Function Overflow	high
14290	CVSTrac Ticket Title Arbitrary Command Execution	high
14289	CVSTrac Malformed URI Infinite Loop DoS	medium
14288	CVSTrac chdir() chroot Jail Escape	medium
14287	CVSTrac Invalid Ticket DoS	medium
14286	CVSTrac history.c history_update Function Overflow	high
14285	CVSTrac Database Plaintext Password Storage	medium
14284	CVSTrac cgi.c Multiple Overflows	high
14283	CVSTrac CVSROOT/passwd Arbitrary Account Deletion	medium

Detections

Analytics

CGI abuses Family for Nessus

low

low

medium

high

medium

high

high

medium

medium

critical

medium

medium

high

medium

medium

medium

medium

info

high

high

high

medium

medium

high

high

medium

medium

high

high

high

medium

medium

medium

medium

medium

medium

high

high

high

medium

medium

high

high

medium

medium

medium

high

medium

high

medium