CGI abuses Family for Nessus

ID	Name	Severity
125597	WordPress < 4.9.9 Remote Code Execution Vulnerabilities	high
125596	WordPress < 5.0.4 Directory Traversal Vulnerability	medium
125477	Atlassian Crowd 2.1.x < 3.0.5 / 3.1.x < 3.1.6 / 3.2.x < 3.2.8 / 3.3.x < 3.3.5 / 3.4.x < 3.4.4 RCE Vulnerability	critical
125373	Symantec Messaging Gateway 10.x < 10.7.0 Information Disclosure Vulnerability (SYMSA1482)	medium
125357	Symantec (Blue Coat) Reporter Denial of Service vulnerability (SYMSA1280)	medium
125342	iLO 4 < 2.70 / iLO 5 < 1.40a Multiple Vulnerabilities	high
125258	Citrix ADC and Citrix NetScaler Gateway buffer overflow vulnerability (CTX249976)	high
124772	Atlassian JIRA Multiple Vulnerabilities (JRASERVER-69245) (JRASERVER-69246)	high
124771	Atlassian JIRA Cross-Site Scripting (XSS) Vulnerability (JRASERVER-68614)	medium
124770	Atlassian JIRA Server-Side Request Forgery (SSRF) Vulnerability (JRASERVER-68527)	medium
124769	Atlassian JIRA Cross-Site Scripting (XSS) Vulnerability (JRASERVER-68526)	medium
124764	PHP 7.3.x < 7.3.5 Heap-based Buffer Overflow Vulnerability.	critical
124763	PHP 7.2.x < 7.2.18 Heap-based Buffer Overflow Vulnerability.	critical
124762	PHP 7.1.x < 7.1.29 Heap-based Buffer Overflow Vulnerability.	critical
124719	JQuery < 3.4.0 Object Prototype Pollution Vulnerability	medium
124698	Drupal 7.0.x < 7.67 / 8.6.x < 8.6.16 / 8.7.x < 8.7.1 Drupal Vulnerability (SA-CORE-2019-007)	critical
124682	Joomla! prior to 3.9.6 Cross-Site Scripting (XSS) Vulnerability	medium
124367	WePresent file_transfer.cgi Remote Command Execution	critical
124330	Atlassian Confluence < 6.13.1 Information Disclosure Vulnerability	medium
124281	Atlassian Confluence < 6.6.13 / 6.7.x < 6.12.4 / 6.13.x < 6.13.4 / 6.14.x < 6.14.3 / 6.15.x < 6.15.2 Directory Traversal Vulnerability	high
124239	DNN (DotNetNuke) 7.0.0 < 9.3.1 Multiple Vulnerabilities	medium
124176	Drupal 7.x < 7.66 / 8.5.x < 8.5.15 / 8.6.x < 8.6.15 Multiple Vulnerabilities (drupal-2019-04-17)	critical
124170	Oracle Primavera Unifier Multiple Vulnerabilities (Apr 2019 CPU)	critical
124169	Oracle Primavera P6 Enterprise Project Portfolio Management (EPPM) Multiple Vulnerabilities (Apr 2019 CPU)	critical
124168	Jenkins < 2.164.2 LTS / 2.172 Multiple Vulnerabilities	high
124119	iLO 5 < 1.40 Cross Site Scripting (XSS) Vulnerability	medium
124086	HP DesignJet Accounting.xls Information Disclosure Vulnerability	medium
124004	Atlassian Confluence < 6.6.12 / 6.7.x < 6.12.3 / 6.13.x < 6.13.3 / 6.14.x < 6.14.2 Template Injection	critical
124000	Citrix SD-WAN Center Command Injection	critical
123954	Joomla! 1.5.0 < 3.9.5 Multiple Vulnerabilities	critical
123831	Kubernetes 1.x < 1.11.8 / 1.12.x < 1.12.6 / 1.13.x < 1.13.4 API server DOS	medium
123829	PHP 7.3.x < 7.3.3 Multiple vulnerabilities.	critical
123828	PHP 7.2.x < 7.2.16 Multiple vulnerabilities.	critical
123827	PHP 7.1.x < 7.1.27 Multiple vulnerabilities.	critical
123756	Apache ActiveMQ 5.x < 5.15.9 Corrupt MQTT Frame Denial of Service (DoS) (CVE-2019-0222)	high
123755	PHP 7.3.x < 7.3.4 Multiple vulnerabilities.	critical
123754	PHP 7.2.x < 7.2.17 Multiple vulnerabilities.	critical
123753	PHP 7.1.x < 7.1.28 Multiple vulnerabilities.	critical
123688	Atlassian Fisheye for Windows < 4.4.6, 4.5.x < 4.5.3 Remote Code Execution Vulnerability	high
123687	Atlassian Crucible for Windows < 4.4.6, 4.5.x < 4.5.3 Remote Code Execution Vulnerability	high
123643	WP Google Maps for WordPress < 7.11.17 Unauthenticated SQL Injection (CVE-2019-10692)	critical
123519	Magento 2.2.x < 2.2.8 / 2.3.x < 2.3.1 Unauthenticated SQLi	critical
123417	Apache Solr 5.x <= 5.5.5 or 6.x <= 6.6.5 Deserialization Vulnerability	critical
123416	phpMyAdmin 4.x < 4.8.5 Multiple Vulnerabilities (PMASA-2019-1) (PMASA-2019-2)	critical
123008	Atlassian Confluence < 6.6.12 / 6.7.x < 6.12.3 / 6.13.x < 6.13.3 / 6.14.x < 6.14.2 Multiple Vulnerabilities	critical
123004	Easy WP SMTP Plugin for WordPress 1.3.9 Unauthenticated Remote Code Execution	critical
123003	Atlassian JIRA Common Credentials	critical
122977	Logstash ESA-2019-05	critical
122973	Elasticsearch ESA-2019-04	high
122823	WordPress < 5.1.1 Multiple Vulnerabilities	high

Detections

Analytics

CGI abuses Family for Nessus

high

medium

critical

medium

medium

high

high

high

medium

medium

medium

critical

critical

critical

medium

critical

medium

critical

medium

high

medium

critical

critical

critical

high

medium

medium

critical

critical

critical

medium

critical

critical

critical

high

critical

critical

critical

high

high

critical

critical

critical

critical

critical

critical

critical

critical

high

high