CGI abuses Family for Nessus

ID	Name	Severity
146495	Webmin < 1.970 Multiple Vulnerabilities	critical
146488	Webmin <= 1.910 Remote Command Execution	high
146311	PHP 7.3.x < 7.3.27 / 7.4.x < 7.4.15 / 8.x < 8.0.2 DoS	high
146310	SolarWinds Orion Platform < 2020.2.4 Multiple Vulnerabilities	critical
146309	SolarWinds Orion Platform < 2019.4.2 Remote Code Execution	critical
146103	Atlassian JIRA < 8.5.10 / 8.6.x < 8.13.2 Information Disclosure (JRASERVER-72002)	medium
146091	SonicWall Secure Mobile Access Remote Code Execution (SNWLID-2021-0001)	critical
146088	SonicWall Secure Mobile Access (SMA) Web Detection	info
146087	Apache ActiveMQ 5.x < 5.15.14 / 5.16.x < 5.16.1 Multiple Vulnerabilities	high
145569	Oracle Primavera Unifier (Jan 2021 CPU)	critical
145538	Oracle MySQL Enterprise Monitor Multiple Vulnerabilities (Jan 2021 CPU)	high
145533	Jenkins < 2.263.3 LTS / 2.276 TOCTOU	medium
145248	Jenkins < 2.263.2 LTS / 2.275 Multiple Vulnerabilities	high
145245	Oracle Primavera P6 Enterprise Project Portfolio Management (Jan 2021 CPU)	medium
145223	Oracle Primavera Gateway (Jan 2021 CPU)	high
144980	Joomla 3.0.x < 3.9.24 Multiple Vulnerabilities (5830-joomla-3-9-24)	medium
144947	PHP 7.3.x < 7.3.26 / 7.4.x < 7.4.14 / 8.x < 8.0.1 Input Validation Error	medium
144793	ManageEngine Applications Manager REST API SQLi	critical
144756	Dell iDRAC XSS (DSA-2020-268)	medium
144649	phpMyAdmin 4.9.0 < 4.9.6 / 5.0.0 < 5.0.3 Multiple Vulnerabilities (PMASA-2020-5, PMASA-2020-6)	critical
144646	phpMyAdmin 4.9.0 < 4.9.5 / 5.0.0 < 5.0.2 Multiple Vulnerabilities (PMASA-2020-2, PMASA-2020-3, PMASA-2020-4)	high
144644	phpMyAdmin 4.4.0 < 4.4.15.1 / 4.5.0 < 4.5.1 Content Spoofing (PMASA-2015-5)	medium
144641	phpMyAdmin 4.0.0 < 4.0.10.12 / 4.4.0 < 4.4.15.2 / 4.5.0 < 4.5.3.1 Information Disclosure (PMASA-2015-6)	medium
144622	SolarWinds Orion Platform < 2019.4 HF6 / 2020.2 < 2020.2.1 HF2 Authentication Bypass (SUPERNOVA)	critical
144366	SolarWinds Orion Platform < 2020.2.1 XSS	critical
144365	Apache Struts 2.x < 2.5.26 RCE (S2-061) (direct check)	critical
144198	SolarWinds Orion Platform 2019.4 HF5 / 2020.2.x < 2020.2.1 SUNBURST Malware Backdoor	high
143600	ManageEngine ServiceDesk Plus < 10.0 Build 10012 Arbitrary File Upload	medium
143574	VMware Workspace One Access / VMware Identity Manager Command Injection Vulnerability (VMSA-2020-0027)	critical
143532	phpMyAdmin 4.0.x < 4.0.10.18 / 4.4.x < 4.4.15.9 / 4.6.x < 4.6.5 Multiple Vulnerabilities	critical
143489	phpMyAdmin 4.0.x < 4.0.10.15 / 4.4.x < 4.4.15.5 / 4.5.x < 4.5.5.1 Multiple Vulnerabilities	medium
143449	PHP 7.3.x < 7.3.25 / 7.4.x < 7.4.13 Multiple Vulnerabilities	medium
143422	EMC RSA Archer 6.8 < 6.8.0.4 / 6.9 < 6.9.0.1 URL Injection	medium
143380	Joomla 1.7.x < 3.9.23 Multiple Vulnerabilities (5828-joomla-3-9-23)	critical
143282	phpMyAdmin 4.0.0 < 4.0.10.17 / 4.4.0 < 4.4.15.8 / 4.6.0 < 4.6.4 Multiple Vulnerabilities	critical
143274	Drupal 7.x < 7.75 / 8.x < 8.8.12 / 8.9.x < 8.9.10 / 9.0.x < 9.0.9 Multiple Vulnerabilities (SA-CORE-2020-013)	high
143273	phpMyAdmin 4.0.x < 4.0.10.10 / 4.2.x < 4.2.13.3 / 4.3.x < 4.3.13.1 / 4.4.x < 4.4.6.1 Multiple Vulnerabilities (PMASA-2015-2, PMASA-2015-3)	medium
143272	Atlassian JIRA < 7.13.18 / 8.0.x < 8.5.9 / 8.6.x < 8.12.1 Information Disclosure (JRASERVER-71646)	medium
143262	phpMyAdmin 4.3.x < 4.7.8 XSS (PMASA-2018-1)	medium
143253	phpMyAdmin 4.7.x < 4.7.7 XSRF (PMASA-2017-9)	high
143126	Drupal 7.x < 7.74 / 8.x < 8.8.11 / 8.9.x < 8.9.9 / 9.0.x < 9.0.8 RCE (SA-CORE-2020-012)	high
142904	PHP 7.4.x < 7.4.12 DoS	medium
142894	Citrix SD-WAN Center 10.2.x < 10.2.8 / 11.1.x < 11.1.2b / 11.2.x < 11.2.2 Multiple Vulnerabilities (CTX285061)	critical
142893	Zimbra Collaboration Server 9.x < 9.0.0 P2 XSS	medium
142892	Zimbra Collaboration Server < 8.8.15 P10 / 9.x < 9.0.0 P3 Unrestricted Upload	high
142878	Zimbra Collaboration Server < 8.8.15 P11 / 9.x < 9.0.0 P4 XSS	medium
142742	Adobe Connect <= 11.0.0 Multiple Arbitrary Javascript Execution In The Browser Vulnerabilities (APSB20-69)	medium
142596	Dell OpenManage Server Administrator Path Traversal (DSA-2020-172)	critical
142591	PHP < 7.3.24 Multiple Vulnerabilities	high
142462	Selligent Message Studio Struts Code Execution (CVE-2013-2251)	critical

Detections

Analytics

CGI abuses Family for Nessus

critical

high

high

critical

critical

medium

critical

info

high

critical

high

medium

high

medium

high

medium

medium

critical

medium

critical

high

medium

medium

critical

critical

critical

high

medium

critical

critical

medium

medium

medium

critical

critical

high

medium

medium

medium

high

high

medium

critical

medium

high

medium

medium

critical

high

critical