CGI Family for Nessus Network Monitor

ID	Name	Severity
3178	Coppermine Gallery < 1.3.4 displayimage.php HTML Injection (deprecated)	low
3175	Woltlab Burning Board modcp.php Multiple Parameter SQL Injection	high
3173	Mantis < 0.19.3 Multiple Injection Vulnerabilities	high
3169	phpPGAds/phpAdNew < 2.0.6 lib-view-direct.inc.php clientid Parameter SQL Injection	high
3168	Dada Mail < 2.10 alpha 1 Archived Message XSS	low
3167	Discuz File Extension Validation Weakness Arbitrary File Upload	medium
3163	phpBB < 2.0.20 Multiple Vulnerabilities	high
3162	WordPress < 1.5.1.4 RCE	medium
3157	FlatNuke < 2.5.6 Multiple XSS	low
3111	Atomic Photo Album apa_phpinclude.inc.php apa_module_basedir Parameter Remote File Inclusion	medium
3110	FtpLocate Multiple Scripts fsite Parameter Remote File Inclusion	medium
3109	Hobbit Monitor < 4.1.0 Remote DoS	medium
3104	PHPNews < 1.3.0 auth.php Multiple Field SQL Injection	high
3103	CMSimple < 2.5 Beta 3 Search Function XSS	low
3100	PHP-Fusion < 6.00.107 Multiple Vulnerabilities	medium
3087	GroupWise WebAccess < 6.5 SP5 EMail IMG SRC XSS	low
3086	VP-ASP Multiple Script SQL Injection (2)	high
3063	Moodle < 1.5.1 Unspecified Vulnerability	high
3061	PPA functions.inc.php ppa_root_path Parameter Remote File Inclusion	high
3060	Bugzilla < 2.18.2 / 2.20rc1 Multiple Vulnerabilities	medium
3058	punBB < 1.2.6 profile.php $temp Parameter SQL Injection (deprecated)	high
3056	Jinzora < 2.1 Multiple Scripts include_path Parameter Remote File Inclusion	medium
3055	PHPAUCTION Multiple Vulnerabilities	high
3054	Comersus Cart <= 6.0.41 Multiple XSS / SQL Injection	high
3053	Drupal Public Comment PHP Code Injection	high
3051	phpBB < 2.0.17 Nested BBCode URL Tags XSS	low
3050	Geeklog < 1.3.12 comment.php order Parameter SQL Injection	high
3049	phpPgAdmin < 3.5.4 index.php formLanguage Parameter Traversal Arbitrary File Access	medium
3047	PHPNews < 1.2.6 news.php prevnext Parameter SQL Injection	high
3046	osTicket < 1.3.1 Multiple Vulnerabilities	medium
3041	Xoops < 2.0.12 Multiple XSS / SQL Injection	high
3038	phpBB < 2.0.16 viewtopic.php Arbitrary Code Execution	medium
3037	PHP-Fusion < 6.00.106 submit.php Multiple Parameter HTML Injection	low
3032	UBB.threads < 6.5.2 Beta 2 XSS / SQL Injection	high
3028	Simple Machines Forum < 1.0.5 SQL Injection	high
3026	i-Gallery Traversal File Access / XSS	medium
3025	Raxnet Cacti Detection	medium
3024	MercuryBoard User-Agent HTTP Header SQL Injection	medium
3017	Ultimate PHP Board < 1.9.7 Multiple XSS	low
3016	SquirrelMail < 1.4.5 Multiple Vulnerabilities	medium
2944	Exhibit Engine < 1.5 RC 5 list.php Multiple Parameter SQL Injection	high
2942	Invision Board < 2.0.5 Privilege Escalation / SQL Injection	high
2937	MaxWebPortal password.asp memKey Parameter SQL Injection	high
2933	PHP Advanced Transfer Manager < 1.22 File Upload Arbitrary Command Execution	high
2920	Serendipity < 0.80 RC7 Multiple Vulnerabilities	medium
2918	WordPress < 1.5.1.2 Multiple Vulnerabilities	high
2917	JGS-Portal < 3.03 Multiple Scripts SQL Injection	high
2903	PhotoPost PHP Pro < 5.02 RC4 member.php uid Parameter SQL Injection	high
2900	Bugzilla < 2.19.3 Information Disclosure	low
2898	MaxWebPortal < 1.360 Multiple Vulnerabilities	high

Detections

Analytics

CGI Family for Nessus Network Monitor

low

high

high

high

low

medium

high

medium

low

medium

medium

medium

high

low

medium

low

high

high

high

medium

high

medium

high

high

high

low

high

medium

high

medium

high

medium

low

high

high

medium

medium

medium

low

medium

high

high

high

high

medium

high

high

high

low

high