CGI abuses Family for Nessus

ID	Name	Severity
132583	Apache Solr < 8.4.0 Remote Code Execution	high
132397	Citrix ADC and Citrix NetScaler Gateway Arbitrary Code Execution (CTX267027)	critical
132340	Drupal 7.0.x < 7.69 / 8.7.x < 8.7.11 / 8.8.x < 8.8.1 Multiple Vulnerabilities (drupal-2019-12-18)	critical
132320	Atlassian JIRA < 8.4.2 Information disclosure in Application links plugin	medium
132319	Ansible Tower 3.5.x < 3.5.4 / 3.6.x < 3.6.2 Multiple Vulnerabilities	high
132315	Apache Solr 8.1.1, 8.2.0 Remote JMX RMI Deserialization Vulnerability	critical
132314	Red Hat JBoss Enterprise Application Platform 7.x < 7.2.5 Multiple Vulnerabilities	high
132313	Red Hat JBoss Enterprise Application Platform 7.x < 7.2.4 Authorization Bypass	medium
132312	Red Hat JBoss Enterprise Application Platform 7.x < 7.2.2 Multiple Vulnerabilities	critical
132311	Red Hat JBoss Enterprise Application Platform 6.x < 6.4.22 Multiple Vulnerabilities	high
132243	Joomla 2.5.x < 3.9.14 Multiple Vulnerabilities (5781-joomla-3-9-14)	critical
132103	Citrix SD-WAN Center trace_route Unauthenticated Remote Command Injection	critical
132102	Citrix and NetScaler SD-WAN Center Unauthenticated Directory Traversal File Write	critical
132099	WordPress < 5.3.1	medium
132098	Symantec Messaging Gateway 10.x < 10.7.3 Multiple Vulnerabilities (SYMSA1501)	high
132018	EMC RSA Authentication Manager < 8.4 Patch 8 XSS (DSA-2019-168)	medium
131764	DNN (DotNetNuke) 6.0.0 <= 9.3.2 Multiple Vulnerabilities	medium
131734	Apache Solr Config API Velocity Template RCE (Direct Check)	high
131732	PHP 7.4.x < 7.4.0 Multiple Vulnerabilities.	critical
131731	Ansible Tower 3.6.x < 3.6.1 Information Disclosure	high
131730	Dell iDRAC Improper Authorization (DSA-2019-137)	medium
131319	phpMyAdmin 4.7.7 < 4.9.2 SQLi (PMASA-2019-5)	critical
131167	Apache Solr 8.1.1 / 8.2.0 Remote Code Execution Vulnerability	critical
131163	Joomla 3.9.x < 3.9.9 Joomla 3.9.9 Release (5772-joomla-3-9-9-release)	high
130970	Joomla 3.2.x < 3.9.13 Multiple Vulnerabilities (5780-joomla-3-9-13)	high
130591	Atlassian Jira Server and Data Center Template Injection Vulnerability (JRASERVER-69933)	high
130506	Atlassian Jira 7.13.x < 7.13.4, 8.x < 8.2.2 CSRF vulnerability (JRASERVER-69858)	medium
130347	Citrix SD-WAN Center and NetScaler SD-WAN Center addModifyZTDProxy Unauthenticated Remote Command Injection	critical
130278	Atlassian Jira Webroot Directory Traversal Vulnerability	high
130276	PHP < 7.1.33 / 7.2.x < 7.2.24 / 7.3.x < 7.3.11 Remote Code Execution Vulnerability.	critical
130267	Atlassian Jira 7.13.x < 7.13.3 / 8.0.x < 8.0.4 / 8.1.x < 8.1.1 Information Disclosure Vulnerability	medium
130266	Atlassian Jira 7.6.x < 7.6.13, 7.7.0 < 7.13.3, 8.x < 8.1.1 Information Disclosure Vulnerability	medium
130265	Atlassian Jira 7.13.x < 7.13.3, 8.x < 8.1.1 Cross-Site Scripting Vulnerability	medium
130263	Adobe ColdFusion File Upload (APSB18-33) (CVE-2018-15961)	critical
130168	vBulletin 'widget_php' Command Execution	critical
130099	Jenkins < 2.176.4 LTS / 2.197 Multiple Vulnerabilities	medium
130070	Oracle Primavera Unifier Multiple Vulnerabilities (Oct 2019 CPU)	critical
130059	Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (Oct 2019 CPU)	critical
130019	Oracle Primavera Gateway Multiple Vulnerabilities (Oct 2019 CPU)	critical
129849	WordPress < 5.2.4 Multiple Vulnerabilities	medium
129776	Jenkins < 2.176.3 LTS / 2.192 Multiple Vulnerabilities	high
129764	Puppet Enterprise 2015.x / 2016.x < 2016.4.0 Multiple Vulnerabilities	medium
129763	Puppet Enterprise x < 2018.1.9 / 2019.x.x < 2019.0.3 Default Password Vulnerabilities	critical
129762	Puppet Enterprise 2016.x < 2016.4.15 / 2017.x < 2017.3.10 / 2018.x < 2018.1.4 Plaintext Credential Vulnerability	critical
129761	Puppet Enterprise 2018.x < 2018.1.1 Code Execution Vulnerability	critical
129760	Puppet Enterprise 2016.x < 2016.4.12 / 2017.x < 2017.3.7 / 2018.x < 2018.1.1 Arbitrary Code Execution Vulnerability	high
129759	Puppet Enterprise 2017.x < 2017.3.6 Cross-site Scripting Vulnerability	medium
129758	Puppet Enterprise < 2017.3.4 Code Execution Vulnerability	high
129757	Puppet Enterprise < 2017.2.2 Arbitrary Code Execution Vulnerability	medium
129756	Puppet Enterprise 2015.x < 2016.4.0 Denial of Service Vulnerability	medium

Detections

Analytics

CGI abuses Family for Nessus

high

critical

critical

medium

high

critical

high

medium

critical

high

critical

critical

critical

medium

high

medium

medium

high

critical

high

medium

critical

critical

high

high

high

medium

critical

high

critical

medium

medium

medium

critical

critical

medium

critical

critical

critical

medium

high

medium

critical

critical

critical

high

medium

high

medium

medium