CGI abuses Family for Nessus

ID	Name	Severity
159572	ManageEngine Access Manager Plus Authentication Bypass (CVE-2021-44676)	critical
159570	WordPress Plugin 'Social Warfare' < 3.5.3 XSS	medium
159548	VMware Workspace One Access / VMware Identity Manager Multiple Vulnerabilities (VMSA-2022-0011)	critical
159542	Spring Framework Spring4Shell (CVE-2022-22965)	critical
159522	Sitecore XP 7.5 <= 7.5.2 / 8.0 <= 8.0.7 / 8.1 <= 8.1.3 / 8.2 <= 8.2.7 RCE	critical
159487	SonicWall Secure Mobile Access (SMA) SQLi (SNWLID-2021-0017)	critical
159486	SonicWall Secure Remote Access (SRA) SQLi (SNWLID-2021-0017)	critical
159377	Jenkins plugins Multiple Vulnerabilities (2022-03-29)	high
159375	Spring Cloud Function SPEL Expression Injection (direct check)	critical
159348	Joomla 2.5.x < 3.10.7 / 4.0.x < 4.1.1 Multiple Vulnerabilities (5857-joomla-4-1-1-and-3-10-7-release)	critical
159323	Apache Shiro Default Cipher Key (CVE-2016-4437)	critical
159270	SonicWall NSv Next-Gen Virtual Firewall SSL VPN	info
159203	ManageEngine Desktop Central < 10.1.2137.9 Authentication Bypass (uncredentialed check)	critical
159145	Drupal 9.2.x < 9.2.16 / 9.3.x < 9.3.9 Drupal Vulnerability (SA-CORE-2022-006)	high
159092	Atlassian Jira < 8.13.18 / 8.14.x < 8.20.6 / 8.21.0 XSRF (JRASERVER-73138)	medium
159009	WordPress 5.9 < 5.9.2 / 5.8 < 5.8.4 / 5.7 < 5.7.6 / 5.6 < 5.6.8 / 5.5 < 5.5.9 / 5.4 < 5.4.10 / 5.3 < 5.3.12 / 5.2 < 5.2.15 / 5.1 < 5.1.13 / 5.0 < 5.0.16 / 4.9 < 4.9.20 / 4.8 < 4.8.19 / 4.7 < 4.7.23 / 4.6 < 4.6.23 / 4.5 < 4.5.26 / 4.4 < 4.4.27 / 4.3 < 4.3.28 / 4.2 < 4.2.32 / 4.1 < 4.1.35 / 4.0 < 4.0.35 / 3.9 < 3.9.36 / 3.8 < 3.8.38 / 3.7 < 3.7.38	high
159004	SolarWinds Orion Platform 2020.2.0 < 2020.2.4	critical
158982	Drupal 9.2.x < 9.2.15 / 9.3.x < 9.3.8 Multiple Vulnerabilities (drupal-2022-03-16)	medium
158977	Jenkins plugins Multiple Vulnerabilities (2022-03-15)	high
158891	GitLab 8.15 < 14.6.5 / 14.7 < 14.7.4 / 14.8 < 14.8.2 (CVE-2022-0489)	medium
158890	GitLab 14.6 < 14.6.5 / 14.7.0 < 14.7.4 / 14.8.0 < 14.8.2 (CVE-2022-0738)	high
158889	GitLab 13.2 < 14.3.6 / 14.4 < 14.4.4 / 14.5 < 14.5.2 (CVE-2022-0549)	medium
158888	GitLab 13.0 < 14.6.5 / 14.7 < 14.7.4 / 14.8 < 14.8.2 (CVE-2021-4191)	medium
158690	Jenkins Enterprise and Operations Center 2.277.x < 2.277.43.0.7 / 2.303.x < 2.303.30.0.6 / 2.319.3.4 Multiple Vulnerabilities (CloudBees Security Advisory 2022-02-15)	high
158687	Fortinet FortiWeb < 6.3.16 / 6.4.x < 6.4.2 Heap-Based Buffer Overflow (FG-IR-21-160)	high
158672	Jenkins Enterprise and Operations Center 2.277.x < 2.277.43.0.6 / 2.303.x < 2.303.30.0.5 / 2.319.3.3 Multiple DoS (CloudBees Security Advisory 2022-02-09)	high
158560	GitLab 12.10.x < 14.6.5 / 14.7.x < 14.7.4 / 14.8.x < 14.8.2 Multiple Vulnerabilities	critical
158452	Zabbix 5.4.x < 5.4.9 Multiple Vulnerabilities	critical
158383	Splunk Enterprise 8.1.x < 8.1.7.2 / 8.2.x < 8.2.3.3 Log4j	critical
158361	ManageEngine ADManager Plus < Build 7115 RCE	critical
158154	PHP 8.1.x < 8.1.3	critical
158133	PHP 7.4.x < 7.4.28	critical
158095	Drupal 7.x < 7.88 / 9.2.x < 9.2.13 / 9.3.x < 9.3.6 Multiple Vulnerabilities (drupal-2022-02-16)	high
158092	Jenkins Enterprise and Operations Center < 2.277.43.0.3 / 2.319.1.5 Multiple Vulnerabilities (CloudBees Security Advisory 2021-12-01)	high
158059	Jenkins Enterprise and Operations Center < 2.277.43.0.5 / 2.319.2.5 Multiple Vulnerabilities (CloudBees Security Advisory 2022-01-12)	high
157860	Jenkins LTS < 2.319.3 / Jenkins weekly < 2.334 Multiple Vulnerabilities	high
157383	ManageEngine ServiceDesk Plus Multiple Versions Authentication Bypass	critical
157377	Nagios XI 5.7.5 Command Injection	high
157338	Jenkins Enterprise and Operations Center < 2.303.30.0.4 / 2.319.2.9 RCE (CloudBees Security Advisory 2022-01-28)	medium
157290	ManageEngine NCM < 12.5.465 SQLi	critical
157289	ManageEngine Network Configuration Manager (NCM) Detection	info
157176	Atlassian Jira < 8.13.15 / 8.14.0 < 8.20.3 RCE (JRASERVER-73067)	high
157158	Atlassian Jira < 8.19.0 Broken Access Control (JRASERVER-72737)	medium
157152	Atlassian Jira < 8.21.0 Broken Access Control (JRASERVER-73071)	medium
157069	ThoughtWorks GoCD Default Administrator Access	critical
157068	GoCD < 21.3.0 Path Traversal (Direct)	critical
157066	GoCD < 21.3.0 Path Traversal	critical
156930	Jenkins plugins Multiple Vulnerabilities (2022-01-12)	high
156929	Jenkins LTS < 2.319.2 / Jenkins weekly < 2.330 Multiple Vulnerabilities	high
156893	Oracle Primavera Gateway (Jan 2022 CPU)	medium

Detections

Analytics

CGI abuses Family for Nessus

critical

medium

critical

critical

critical

critical

critical

high

critical

critical

critical

info

critical

high

medium

high

critical

medium

high

medium

high

medium

medium

high

high

high

critical

critical

critical

critical

critical

critical

high

high

high

high

critical

high

medium

critical

info

high

medium

medium

critical

critical

critical

high

high

medium