RELAYTO Penetration Test Results (2/101)

Pass TimThumb 'timthumb.php' WebShot 'src' Parameter Remote Command Execution CVE-2014-4663 28 Jul 2014 6.8 (v2) Medium Pass Inductive Automation Ignition Multiple Vulnerabilities CVE-2015-0976 CVE-2015-0991 CVE-2015-0992 CVE-2015-0993 CVE-2015-0994 CVE-2015-0995 02 Jun 2015 6.4 (v2) Medium Pass Puppet Enterprise < 2016.4.5 / 2016.5.x / 2017.1.x Multiple Vulnerabilities CVE-2017-2292 CVE-2017-2293 CVE-2017-2294 CVE-2017-2295 CVE-2017-2297 09 Oct 2019 9 (v3) Critical Pass IBM WebSphere Application Server 7.0 < Fix Pack 33 Multiple Vulnerabilities CVE-2013-6323 CVE-2013-6329 CVE-2013-6438 CVE-2013-6738 CVE-2013-6747 CVE-2014-0050 CVE-2014-0098 CVE-2014-0114 CVE-2014-0453 CVE-2014-0460 CVE-2014-0859 CVE-2014-0878 CVE-2014-0891 CVE-2014-0963 CVE-2014-0965 CVE-2014-302201 Aug 2014 7.5 (v2) High Pass IBM WebSphere Application Server 6.0 < 6.0.2.43 Multiple Vulnerabilities CVE-2010-0776 CVE-2010-0777 CVE-2010-0779 CVE-2010-2327 28 Sep 2010 5 (v2) Medium Pass Schneider Electric InduSoft Web Studio < 7.1.3.4 Multiple Information Disclosures (SEVD-2015-054-01) CVE-2015-0996 CVE-2015-0997 CVE-2015-0998 CVE-2015-0999 18 Jun 2015 5 (v2) Medium Pass VMware vCenter Update Manager Directory Traversal (VMSA-2011-0014) CVE-2011-4404 28 Nov 2011 7.8 (v2) High Pass Adobe Experience Manager 6.4 and 6.5 DoS (APSB20-08) CVE-2020-3741 14 Feb 2020 7.5 (v3) High Pass ManageEngine ADSelfService EmployeeSearch.cc Multiple XSS CVE-2010-3274 CVE-2011-5105 08 Dec 2011 4.3 (v2) Medium Pass SurgeMail IMAP Server SEARCH Command Remote Buﬀer Overﬂow CVE-2007-4377 23 Aug 2007 6 (v2) Medium Pass VERITAS Backup Exec Agent Unauthenticated Remote Registry Access CVE-2005-0771 08 Aug 2005 10 (v2) Critical Pass Apple iTunes < 7.4 Malformed Music File Heap Overﬂow (uncredentialed check) CVE-2007-3752 07 Sep 2007 9.3 (v2) High Pass ManageEngine Firewall Analyzer Multiple XSS 13 Apr 2016 4.3 (v2) Medium Pass Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness CVE-2005-1794 01 Jun 2005 5.1 (v2) Medium Pass Mercury IMAP Server SEARCH Command Remote Buﬀer Overﬂow CVE-2007-5018 20 Sep 2007 6 (v2) Medium Pass Novell GroupWise 'FileUploadServlet' Arbitrary File Access Vulnerability CVE-2014-0600 02 Sep 2014 7.8 (v2) High Pass Web Application Information Disclosure 25 Jan 2012 5 (v2) Medium Pass Mac OS X 10.11.x < 10.11.5 Multiple Vulnerabilities CVE-2016-1792 CVE-2016-1793 CVE-2016-1794 CVE-2016-1795 CVE-2016-1796 CVE-2016-1797 CVE-2016-1798 CVE-2016-1799 CVE-2016-1801 CVE-2016-1802 CVE-2016-1803 CVE-2016-1804 CVE-2016-1805 CVE-2016-1806 CVE-2016-1807 CVE-2016-1808 CVE-2016-1809 CVE-2016-1810 CVE-2016-1811 CVE-2016-1812 CVE-2016-1813 CVE-2016-1814 CVE-2016-1815 CVE-2016-1816 CVE-2016-1817 CVE-2016-1818 CVE-2016-1819 CVE-2016-1820 CVE-2016-1821 CVE-2016-1822 CVE-2016-1823 CVE-2016-1824 CVE-2016-1825 CVE-2016-1826 CVE-2016-1827 CVE-2016-1828 CVE-2016-1829 CVE-2016-1830 CVE-2016-1831 CVE-2016-1832 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-1842 CVE-2016-1843 CVE-2016-1844 CVE-2016-1846 CVE-2016-1848 CVE-2016-1850 CVE-2016-1851 CVE-2016-1853 CVE-2016-1861 CVE-2016-3141 CVE-2016-3142 CVE-2016-4070 CVE-2016-4071 CVE-2016-4072 CVE-2016-4073 CVE-2016-465019 May 2016 7.8 (v3) High Pass TrackerCam Multiple Remote Vulnerabilities CVE-2005-0478 CVE-2005-0479 CVE-2005-0480 CVE-2005-0481 CVE-2005-0482 21 Feb 2005 7.5 (v2) High Pass Multiple Vulnerabilities in Cisco Wireless LAN Controllers (cisco-sa-20090727-wlc) CVE-2009-1164 CVE-2009-1165 CVE-2009-1166 CVE-2009-1167 25 Sep 2013 10 (v2) Critical Pass SMB Signing not required 19 Jan 2012 5.3 (v3) Medium Pass Pivotal Web Server Version Detection 26 Aug 2014 None Pass Unsupported IPSO Firewall 25 Jan 2012 10 (v2) Critical Pass Cisco NX-OS Software Unexpected IP in IP Packet Processing Vulnerability (cisco-sa-nxos-ipip-dos-kCT9X4)CVE-2020-10136 05 Jun 2020 5.3 (v3) Medium Pass Riverbed SteelApp (Stingray) Traﬃc Manager Web UI Detection 15 Sep 2014 None Pass OpenSSL 1.0.0f DTLS Denial of Service CVE-2012-0050 27 Jan 2012 5 (v2) Medium Pass Oracle GlassFish Server 3.1.1 < 3.1.1.2 Administration Component Unspeciﬁed Vulnerability CVE-2012-0081 02 Feb 2012 3.7 (v2) Low Pass OpenSSL 0.9.8s DTLS Denial of Service CVE-2012-0050 27 Jan 2012 5 (v2) Medium Pass CodeMeter TCP Packet Parsing Unspeciﬁed Remote DoS CVE-2011-4057 02 Feb 2012 5 (v2) Medium Pass CodeMeter Virtual Directory Traversal Arbitrary File Access (remote check) 02 Feb 2012 5.3 (v3) Medium Pass Cisco IOS Software IPv6 Virtual Fragmentation Reassembly Denial of Service Vulnerability (cisco-sa-20130925-ipv6vfr)CVE-2013-5474 07 Oct 2013 7.8 (v2) High Pass Oracle Application Express (APEX) / REST Data Services Listener Detection 07 Oct 2014 None Pass SolarWinds Log and Event Manager Detection 07 Nov 2014 None Pass RuggedCom RuggedOS Web-Based Admin Interface Default Credentials 15 Jun 2012 10 (v2) Critical Pass Modicon PLC CPU Type SNMP Request Model Type Remote Disclosure 11 Dec 2006 5 (v2) Medium Pass Oracle GlassFish Server 2.1.1 < 2.1.1 Patch15 Administration Component Unspeciﬁed Vulnerability CVE-2011-3564 02 Feb 2012 2.1 (v2) Low Pass EMC Celerra Control Station Default Credentials 13 Feb 2012 10 (v2) Critical Pass Cisco NX-OS OpenSSL Multiple Vulnerabilities CVE-2010-5298 CVE-2014-0076 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-3470 CVE-2015-0292 26 Feb 2016 7.5 (v2) High Pass Docker Remote API Detection 12 Apr 2019 10 (v3) Critical Pass Novell eDirectory Server iMonitor Multiple Remote Overﬂows CVE-2005-2551 CVE-2006-2496 12 Aug 2005 10 (v2) Critical Pass Oracle GlassFish Server 2.1.1 < 2.1.1.14 / 3.0.1 < 3.0.1.4 / 3.1.1 < 3.1.1.1 Web Container Component UnspeciCVE-2011-3559ﬁed Vulnerability 22 Feb 2012 7.8 (v2) High Pass eIQnetworks Enterprise Security Analyzer Monitoring.exe Multiple Command Overﬂow CVE-2006-3838 10 Aug 2006 10 (v2) Critical Pass HP-UX Ignite-UX TFTP Service Remote File Manipulation CVE-2004-0952 26 Aug 2005 6.4 (v2) Medium Pass IIS Detailed Error Information Disclosure 16 Mar 2012 5.3 (v3) Medium Pass Tenable Appliance Web Authentication Bypass 17 Jul 2012 7.5 (v2) High Pass WordPress ToolsPack Plugin Backdoor 07 Mar 2012 8.8 (v3) High Pass TheCartPress Plugin for WordPress 'tcp_class_path' Parameter Remote File Inclusion 19 Mar 2012 7.5 (v2) High Pass 3S CODESYS V3 CmpUserMgr 3.x < 3.5.16.0 Password Transmission Vulnerability CVE-2019-9013 12 Aug 2019 8.8 (v3) High Pass CA ARCserve Backup Network Service Network Request Parsing Remote DoS CVE-2012-1662 05 Apr 2012 5 (v2) Medium Pass Mac OS X 10.11.x < 10.11.3 Multiple Vulnerabilities CVE-2015-7995 CVE-2016-1716 CVE-2016-1717 CVE-2016-1718 CVE-2016-1719 CVE-2016-1720 CVE-2016-1721 CVE-2016-1722 CVE-2016-172921 Jan 2016 7.3 (v3) High Pass phpWebNotes core/api.php t_path_core Parameter File Inclusion CVE-2005-2775 29 Aug 2005 7.5 (v2) High Pass Palo Alto Networks PAN-OS 8.0.x < 8.0.6 Multiple Vulnerabilities CVE-2017-15942 CVE-2017-15944 15 Dec 2017 9.8 (v3) Critical Pass ManageEngine DeviceExpert ScheduleResultViewer Remote Directory Traversal 22 Mar 2012 7.8 (v2) High Pass Palo Alto Networks 7.1.x < 7.1.22 / 8.0.x < 8.0.15 / 8.1.x < 8.1.6 Cross-Site Scripting Vulnerability (PAN-SA-2019-0001)CVE-2019-1565 12 Mar 2019 5.4 (v3) Medium Pass Apache Traﬃc Server 3.0.x < 3.0.4 / 3.1.x < 3.1.3 Host HTTP Header Parsing Remote Overﬂow CVE-2012-0256 04 Apr 2012 7.5 (v2) High Pass IBM Storwize Detection 23 Jan 2015 None Pass Debugging Log Report 17 Jun 2015 None Pass at32 Reverse Proxy Admin Portal No Password 05 Apr 2012 7.5 (v2) High Pass Palo Alto Networks PAN-OS 6.1.x < 6.1.22 / 7.1.x < 7.1.20 / 8.0.x < 8.0.13 / 8.1.x < 8.1.5 Multiple Vulnerabilities (PCVE-2018-5391AN-SA-2018-0012) 19 Feb 2019 7.5 (v3) High Pass Sendmail Service Detection 06 Aug 2018 None Pass ePolicy Orchestrator Symlink Arbitrary Privileged File Access CVE-2005-2554 01 Sep 2005 4.9 (v2) Medium Pass TP-Link HTTP Server Detection 01 Oct 2018 None Pass OpenSSH < 4.4 Multiple Vulnerabilities CVE-2006-4924 CVE-2006-4925 CVE-2006-5051 CVE-2006-5052 CVE-2006-5229 CVE-2007-3102 CVE-2008-4109 28 Sep 2006 9.3 (v2) High Pass Cisco NX-OS OTV GRE Packet Header Parameter Handling RCE (cisco-sa-20161005-otv) CVE-2016-1453 18 Oct 2016 9.8 (v3) Critical Pass Citrix XenServer vSwitch Controller < 2.0.0+build11349 Multiple Vulnerabilities 20 Apr 2012 4.3 (v2) Medium Pass Apple iTunes < 11.2 Multiple Vulnerabilities (uncredentialed check) CVE-2014-1296 CVE-2014-8842 16 May 2014 4.3 (v2) Medium Pass 3S CODESYS Runtime 3.x < 3.5.14.20 Multiple Vulnerabilities CVE-2019-9010 CVE-2019-9012 CVE-2019-9013 30 Mar 2020 9.8 (v3) Critical Pass Palo Alto Networks 7.1.x < 7.1.22 / 8.0.x < 8.0.15 / 8.1.x < 8.1.6 Multiple Vulnerabilities (PAN-SA-2019-0002)CVE-2019-1566 20 Feb 2019 6.1 (v3) Medium Pass Apple iTunes < 12.3 Multiple Vulnerabilities (uncredentialed check) CVE-2010-3190 CVE-2014-8146 CVE-2015-1152 CVE-2015-1153 CVE-2015-1157 CVE-2015-1205 CVE-2015-3686 CVE-2015-3687 CVE-2015-3688 CVE-2015-3730 CVE-2015-3731 CVE-2015-3733 CVE-2015-3734 CVE-2015-3735 CVE-2015-3736 CVE-2015-3737 CVE-2015-3738 CVE-2015-3739 CVE-2015-3740 CVE-2015-3741 CVE-2015-3742 CVE-2015-3743 CVE-2015-3744 CVE-2015-3745 CVE-2015-3746 CVE-2015-3747 CVE-2015-3748 CVE-2015-3749 CVE-2015-5755 CVE-2015-5761 CVE-2015-5789 CVE-2015-5790 CVE-2015-5791 CVE-2015-5792 CVE-2015-5793 CVE-2015-5794 CVE-2015-5795 CVE-2015-5796 CVE-2015-5797 CVE-2015-5798 CVE-2015-5799 CVE-2015-5800 CVE-2015-5801 CVE-2015-5802 CVE-2015-5803 CVE-2015-5804 CVE-2015-5805 CVE-2015-5806 CVE-2015-5807 CVE-2015-5808 CVE-2015-5809 CVE-2015-5810 CVE-2015-5811 CVE-2015-5812 CVE-2015-5813 CVE-2015-5814 CVE-2015-5815 CVE-2015-5816 CVE-2015-5817 CVE-2015-5818 CVE-2015-5819 CVE-2015-5821 CVE-2015-5822 CVE-2015-5823 CVE-2015-5874 CVE-2015-592026 Oct 2015 9.3 (v2) High Pass CGIProxy < 2.1.2 Multiple Unspeciﬁed Vulnerabilities 23 Apr 2012 7.5 (v2) High Pass VERITAS Storage Foundation NULL NTLMSSP Authentication Bypass (SYM08-015) CVE-2008-3703 15 Aug 2008 10 (v2) Critical Pass Dell EMC Data Protection Central Web Interface Detected 02 Apr 2020 None Pass IBM Spectrum Protect Plus Administrative Console Detection 21 Apr 2020 None Pass Cisco IOS XE Software Common Industrial Protocol Privilege Escalation (cisco-sa-XE-SAP-OPLbze68) CVE-2021-1392 30 Mar 2021 7.8 (v3) High Pass Cisco IOS Software CIP Request DoS (cisco-sa-20160928-cip) CVE-2016-6391 25 Oct 2016 7.5 (v3) High Pass Cisco UCS Director and Cisco UCS Director Express for Big Data Multiple Vuulnerabilities (cisco-sa-ucsd-mult-vulns-UNfpdW4E)CVE-2020-3239 CVE-2020-3240 CVE-2020-3243 CVE-2020-3247 CVE-2020-3248 CVE-2020-3249 CVE-2020-3250 CVE-2020-3251 CVE-2020-325221 Apr 2020 9.8 (v3) Critical Pass Mac OS X 10.11.x < 10.11.4 Multiple Vulnerabilities CVE-2014-9495 CVE-2015-0973 CVE-2015-1819 CVE-2015-3195 CVE-2015-5312 CVE-2015-7499 CVE-2015-7500 CVE-2015-7551 CVE-2015-7942 CVE-2015-8035 CVE-2015-8126 CVE-2015-8242 CVE-2015-8472 CVE-2015-8659 CVE-2016-0777 CVE-2016-0778 CVE-2016-0801 CVE-2016-0802 CVE-2016-1732 CVE-2016-1733 CVE-2016-1734 CVE-2016-1735 CVE-2016-1736 CVE-2016-1737 CVE-2016-1738 CVE-2016-1740 CVE-2016-1741 CVE-2016-1743 CVE-2016-1744 CVE-2016-1745 CVE-2016-1746 CVE-2016-1747 CVE-2016-1748 CVE-2016-1749 CVE-2016-1750 CVE-2016-1752 CVE-2016-1753 CVE-2016-1754 CVE-2016-1755 CVE-2016-1756 CVE-2016-1757 CVE-2016-1758 CVE-2016-1759 CVE-2016-1761 CVE-2016-1762 CVE-2016-1764 CVE-2016-1767 CVE-2016-1768 CVE-2016-1769 CVE-2016-1770 CVE-2016-1773 CVE-2016-1775 CVE-2016-1788 CVE-2016-195022 Mar 2016 9.8 (v3) Critical Pass BeanShell Remote Server Mode Arbitrary Code Execution 03 May 2012 10 (v2) Critical Pass 3S CODESYS Runtime 3.x < 3.5.15.40 Multiple Vulnerabilities CVE-2019-5105 CVE-2020-10245 30 Apr 2020 9.8 (v3) Critical Pass macOS 10.12.x < 10.12.1 Multiple Vulnerabilities CVE-2016-4660 CVE-2016-4661 CVE-2016-4667 CVE-2016-4669 CVE-2016-4670 CVE-2016-4673 CVE-2016-4674 CVE-2016-4675 CVE-2016-4678 CVE-2016-4679 CVE-2016-4688 CVE-2016-4721 CVE-2016-4780 CVE-2016-7577 CVE-2016-7579 CVE-2016-7584 CVE-2016-761325 Oct 2016 7.8 (v3) High Pass PHP PHP-CGI Query String Parameter Injection Arbitrary Code Execution CVE-2012-1823 CVE-2012-2311 14 May 2012 7.5 (v2) High Pass PHP 5.3.x < 5.3.13 CGI Query String Code Execution CVE-2012-2311 CVE-2012-2335 CVE-2012-2336 09 May 2012 7.5 (v2) High Pass Cisco Firepower Device Manager On-Box Software XML Parsing (cisco-sa-xpftd-gYDXyN8H) CVE-2020-3310 10 Jul 2020 4.9 (v3) Medium Pass Kibana ESA-2018-05 CVE-2018-3821 14 Jan 2019 6.1 (v3) Medium Pass McAfee WebShield UI Dashboard XSS (SB10026) CVE-2012-4597 16 May 2012 4.3 (v2) Medium Pass McAfee WebShield UI mui Directory Traversal (SB10026) CVE-2012-4596 16 May 2012 4.3 (v2) Medium Pass Caldera 'cdir' Parameter Absolute Path Directory Traversal CVE-2014-2933 05 Jun 2014 5 (v2) Medium Pass IBM San Volume Controller / Storwize / FlashSystem Arbitrary File Read (CVE-2018-1775) CVE-2018-1775 14 Jun 2019 6.5 (v3) Medium Pass Liferay Portal Default Credentials 22 May 2012 7.5 (v2) High Pass Inductive Automation Ignition 8.x < 8.0.10 Multiple Vulnerabilities CVE-2020-10641 CVE-2020-10644 CVE-2020-12000 CVE-2020-12004 11 Jun 2020 7.5 (v3) High Pass OpenSSL 1.1.1 < 1.1.1c Vulnerability CVE-2019-1543 03 Jun 2019 7.4 (v3) High Pass ManageEngine AssetExplorer Multiple Vulnerabilities 16 Nov 2015 5 (v2) Medium Pass PacketVideo TwonkyServer Directory Traversal 23 May 2012 5 (v2) Medium Pass SAP Netweaver Application Server (AS) HTTP Server Detection 15 Jul 2020 None Pass HP SAN/iQ < 9.5 Root Shell Command Injection CVE-2012-4361 01 Jun 2012 7.7 (v2) High Pass Cisco IP Phone SIP Detection 20 Jul 2020 None Pass Cisco Small Business RV132W and RV134W Routers Management Interface RCE / DoS (cisco-sa-rv-132w134w-overCVE-2021-1287ﬂow-Pptt4H2p) 25 Mar 2021 7.2 (v3) High Pass Mac OS X 10.9.x < 10.9.2 Multiple Vulnerabilities CVE-2013-1862 CVE-2013-1896 CVE-2013-4073 CVE-2013-4113 CVE-2013-4248 CVE-2013-5986 CVE-2013-5987 CVE-2013-6420 CVE-2013-6629 CVE-2014-1245 CVE-2014-1246 CVE-2014-1247 CVE-2014-1248 CVE-2014-1249 CVE-2014-1250 CVE-2014-1252 CVE-2014-1254 CVE-2014-1255 CVE-2014-1256 CVE-2014-1258 CVE-2014-1259 CVE-2014-1261 CVE-2014-1262 CVE-2014-1263 CVE-2014-1264 CVE-2014-1265 CVE-2014-126625 Feb 2014 10 (v2) Critical Pass TLS Version 1.0 Protocol Detection 22 Nov 2017 6.5 (v3) Medium Pass Open WebMail sessionid Parameter XSS CVE-2005-2863 21 Sep 2005 4.3 (v2) Medium Pass IBM WebSphere Application Server 8.5 < Fix Pack 8.5.5.2 Multiple Vulnerabilities CVE-2013-5372 CVE-2013-5780 CVE-2013-5803 CVE-2013-6323 CVE-2013-6325 CVE-2013-6329 CVE-2013-6438 CVE-2013-6725 CVE-2013-6738 CVE-2013-6747 CVE-2014-0050 CVE-2014-0823 CVE-2014-0857 CVE-2014-0859 CVE-2014-0891 CVE-2014-089629 May 2014 7.5 (v2) High Pass IBM MQ Service Detection 28 Jul 2020 None Pass Titan FTP Server SITE WHO Command Resource Consumption DoS CVE-2008-6082 16 Oct 2008 5 (v2) Medium Pass Palo Alto Networks PAN-OS 7.0.x < 7.0.19 Multiple Vulnerabilities CVE-2017-15940 CVE-2017-15942 CVE-2017-15943 CVE-2017-15944 15 Dec 2017 9.8 (v3) Critical Pass Cisco NX-OS Software Unauthorized Administrator Account (cisco-sa-20180620-nxosadmin) CVE-2018-0294 14 Jul 2020 6.7 (v3) Medium Pass Palo Alto Networks PAN-OS < 4.0.8 Multiple Vulnerabilities CVE-2012-6590 CVE-2012-6598 05 Mar 2014 9 (v2) High Pass Network UPS Tools Cleartext Authentication 22 Jun 2012 6.8 (v2) Medium Pass MobileIron Core API Detection 09 Oct 2020 None Pass Elasticsearch ESA-2018-19 CVE-2018-17247 18 Jan 2019 5.9 (v3) Medium Pass Cisco IoT Field Network Director Web UI Detection. 30 Sep 2020 None Pass MailEnable IMAP Server W3C Logging Overﬂow CVE-2005-3155 04 Oct 2005 7.5 (v2) High Pass Juniper Junos Multiple CLI Command Handling Local Privilege Escalations (JSA10763) CVE-2016-4922 27 Oct 2016 7.8 (v3) High 2

RELAYTO Penetration Test Results - Page 2

RELAYTO Penetration Test Results Page 1 Page 3