CGI abuses Family for Nessus

ID	Name	Severity
22305	Easy Address Book Web Server Query Remote Format String	medium
22303	TikiWiki jhot.php Arbitrary File Upload	high
22300	Webmin Null Byte Filtering Information Disclosure	medium
22299	e107 ibrowser.php zend_has_del() Function Remote Code Execution	high
22298	Joomla! < 1.0.11 Unspecified Remote Code Execution	medium
22297	Joomla! < 1.0.11 administrator/index.php Input Weakness	medium
22296	CubeCart < 3.0.13 Multiple Remote Vulnerabilities (LFI, SQLi, XSS)	high
22295	Feedsplitter <= 2006-01-21 Multiple Remote Vulnerabilities (XSS, Traversal, Disc)	high
22272	Fuji Xerox Printing Systems (FXPS) Print Engine Crafted Request HTTP Authentication Bypass	medium
22271	PHProjekt <= 5.1 Multiple Remote File Inclusions	high
22268	PHP < 4.4.3 / 5.1.4 Multiple Vulnerabilities	high
22267	phpCOIN Multiple Script _CCFG Parameter Remote File Inclusion	medium
22257	WebAdmin < 3.2.5 Multiple Vulnerabilities	high
22255	osCommerce shopping_cart.php id Array Parameters SQL Injection	high
22235	Docebo GLOBALS Variable Overwrite Remote File Inclusion	medium
22234	Zen Cart autoload_func.php autoLoadConfig Array Remote File Inclusion	medium
22233	Zen Cart ipn_main_handler.php custom SQL Injection	high
22232	Owl Intranet Engine <= 0.91 Multiple Vulnerabilities	high
22231	CubeCart < 3.0.12 Multiple Vulnerabilities (SQLi, XSS)	high
22230	SquirrelMail compose.php session_expired_post Arbitrary Variable Overwriting	medium
22206	WEBInsta CMS index.php templates_dir Parameter Remote File Inclusion	high
22205	IPCheck Server Monitor Traversal Arbitrary File Access	medium
22204	Ruby on Rails Routing Code URL Code Evaluation DoS	high
22203	Apache on Windows mod_alias URL Validation Canonicalization CGI Source Disclosure	medium
22130	Barracuda Spam Firewall Default Credentials	high
22124	phpMyAdmin import_blacklist Variable Overwriting	medium
22123	TWiki configure Script Arbitrary Command Execution	high
22117	PatchLink Update Server proxyreg.asp Arbitrary Proxy Manipulation	high
22116	PatchLink Update Server nwupload.asp Traversal Arbitrary File Write	medium
22115	PatchLink Update Server checkprofile.asp checkid Parameter SQL Injection	high
22093	OpenCms < 6.2.2 Multiple Vulnerabilities	medium
22091	Loudblog index.php id Parameter SQL Injection	high
22090	X7 Chat upgradev1.php old_prefix Parameter SQL Injection	high
22089	Invision Power Board classes/class_session.php CLIENT_IP HTTP Header SQL Injection	high
22079	IceWarp Multiple Script Remote File Inclusion	medium
22078	VHCS login.php check_login() Function Authentication Bypass	critical
22077	VHCS include/sql.php include_path Parameter Remote File Inclusion	medium
22055	MyBB HTTP Header 'CLIENT-IP' Field SQLi	high
22049	Mambo / Joomla! Component / Module 'mosConfig_absolute_path' Multiple Parameter Remote File Include Vulnerabilities	high
22048	Trend Micro OfficeScan 7.3 Multiple Vulnerabilities	high
22046	McAfee Common Management Agent Traversal Arbitrary File Write	medium
22023	SimpleBoard / Joomlaboard 'sbp' Parameter Remote File Include	high
22021	Mambo phpBB Component download.php phpbb_root_path Parameter Remote File Inclusion	medium
22005	LifeType index.php Date Parameter SQL Injection	high
21918	phpFormGenerator Arbitrary File Upload	high
21787	SiteBuilder-FX top.php admindir Parameter Remote File Inclusion	medium
21785	Webmin 'miniserv.pl' Arbitrary File Disclosure	medium
21780	FCKeditor on Apache connector.php Crafted File Extension Arbitrary File Upload	high
21779	Geeklog Multiple Script _CONF[path] Parameter Remote File Inclusion	medium
21764	Scout Portal Toolkit SPT--ForumTopics.php forumid Parameter SQL Injection	high

Detections

Analytics

CGI abuses Family for Nessus

medium

high

medium

high

medium

medium

high

high

medium

high

high

medium

high

high

medium

medium

high

high

high

medium

high

medium

high

medium

high

medium

high

high

medium

high

medium

high

high

high

medium

critical

medium

high

high

high

medium

high

medium

high

high

medium

medium

high

medium

high