CGI abuses Family for Nessus

ID	Name	Severity
12268	Invision Power Board ssi.php f Parameter SQL Injection	high
12258	NETGEAR Wireless Access Point Hardcoded Default Password	high
12256	jPortal print.inc.php id Parameter SQL Injection	high
12251	RealServer /admin/Docs/default.cfg Information Disclosure	medium
12245	Java (.java / .class) Source Code Disclosure	medium
12234	Terminal Services Web Detection	info
14228	SquirrelMail < 1.4.3 Multiple Vulnerabilities	high
12227	HP Web JetAdmin <=7.0 Multiple Vulnerabilities (XSS, Code Exe, DoS, more)	critical
12202	Nuked-Klan index.php user_langue Parameter Traversal Arbitrary File Access	high
12198	Ultimate PHP Board add.php Direct Request Information Disclosure	medium
12127	Aborior Encore WebForum display.cgi file Parameter Command Execution	high
12123	Apache Tomcat source.jsp Arbitrary Directory Listing	medium
12120	HP Web JetAdmin setinfo.hts setinclude Parameter Traversal Arbitrary File Access	low
12097	cPanel <= 9.1.0 Multiple Vulnerabilities	critical
12096	cfWebStore Multiple Vulnerabilities (SQLi, XSS)	high
12095	Emumail WebMail Multiple Remote Vulnerabilities (XSS, Disc)	medium
12089	HotOpentickets Privilege Escalation	medium
12088	SpiderSales Shopping Cart SQL injection	critical
12077	Netscape Enterprise Server Default Files Present	low
12074	TalentSoft Web+ webplus.exe Path Disclosure	medium
12068	X-News Password MD5 Hash Authentication Bypass	high
12064	ShopCartCGI Multiple Script Traversal Arbitrary File Access	medium
12062	Ecommerce Corp. Online Store Kit 3.0 Multiple Vulnerabilities	high
12059	SandSurfer < 1.7.0 User Authentication Bypass	high
12043	BEA WebLogic config.xml Operator/Admin Password Disclosure	medium
12042	ReviewPost PHP Pro Multiple Script SQL Injections	high
12041	phpMyAdmin export.php what Parameter Traversal Arbitrary File Access	medium
12040	Qualiteam X-Cart Multiple Script perl_binary Parameter Arbitrary Command Execution	critical
12038	Photopost PHP Pro photo Parameter SQL Injection	high
12035	PJ CGI Neo PJreview_Neo.cgi p Parameter Traversal Arbitrary File Access	medium
12034	phpGedView Arbitrary File Access / Remote File Inclusion	high
12033	Leif Wright Web Blog blog.cgi ViewFile Request file Parameter Arbitrary Command Execution	high
12032	JBrowser _admin/ Direct Request Admin Authentication Bypass	high
12031	Aprox PHP Portal index.php Arbitrary File View	medium
12030	Gallery HTTP Global Variables File Inclusion	medium
12026	PHPix index.phtml Multiple Parameter Arbitrary Command Execution	high
12025	Mambo mod_mainmenu.php mosConfig_absolute_path Parameter Remote File Inclusion	high
12020	XTreme ASP Photo Gallery adminlogin.asp Multiple Parameter SQL Injection	high
12008	PhpDig config.php relative_script_path Parameter Remote File Inclusion	high
11981	vBulletin calendar.php eventid Parameter SQL Injection	high
11979	HotNews Multiple Script Remote File Inclusion	high
11976	EasyDynamicPages Multiple Script edp_relative_path Parameter Remote File Inclusion	high
11975	QuikStore Shopping Cart quikstore.cgi template Parameter Traversal Arbitrary File Access	medium
11973	BulletScript MailList bsml.pl Information Disclosure	medium
11969	PHPCatalog id Parameter SQL Injection	high
11966	PHP-Ping php-ping.php count Parameter Arbitrary Command Execution	high
11954	SGDynamo sgdynamo.exe HTNAME Parameter Path Disclosure	medium
11942	VP-ASP shopsearch SQL Injection	medium
11940	CuteNews Debug Info Disclosure	medium
11939	Foxweb foxweb.exe / foxweb.dll Long URL Remote Overflow	high

Detections

Analytics

CGI abuses Family for Nessus

high

high

high

medium

medium

info

high

critical

high

medium

high

medium

low

critical

high

medium

medium

critical

low

medium

high

medium

high

high

medium

high

medium

critical

high

medium

high

high

high

medium

medium

high

high

high

high

high

high

high

medium

medium

high

high

medium

medium

medium

high