RELAYTO Penetration Test Results (88/101)

Pass MongoDB Server Login Possible 08 Nov 2021 None Pass Cerberus Helpdesk rpc.php Arbitrary Ticket Information Disclosure CVE-2006-5428 18 Oct 2006 5 (v2) Medium Pass Draytek VigorConnect Web UI Detection 08 Nov 2021 None Pass Draytek VigorConnect LFI (CVE-2021-20123) CVE-2021-20123 08 Nov 2021 7.5 (v3) High Pass Asterisk Skinny Channel Driver (chan_skinny) get_input Function Remote Overﬂow CVE-2006-5444 19 Oct 2006 7.5 (v2) High Pass Hosting Controller Multiple Script ForumID Parameter SQL Injection CVE-2006-5629 23 Oct 2006 7.5 (v2) High Pass Apache Airﬂow Web API Detection 26 Apr 2022 None Pass Segue CMS themesettings.inc.php themesdir Parameter Remote File Inclusion CVE-2006-5497 28 Oct 2006 7.5 (v2) High Pass miniBB bb_func_txt.php pathToFiles Parameter Remote File Inclusion CVE-2006-5673 30 Oct 2006 6.8 (v2) Medium Pass e107 class2.php e107language_e107cookie Cookie Traversal Local File Inclusion CVE-2006-5786 06 Nov 2006 7.5 (v2) High Pass OpenLDAP SASL authcid Name BIND Request DoS CVE-2006-5779 07 Nov 2006 5 (v2) Medium Pass Exhibit Engine styles.php toroot Parameter Remote File Inclusion CVE-2006-7183 CVE-2006-7184 14 Nov 2006 6.8 (v2) Medium Pass MODx CMS base_path Parameter Remote File Inclusion CVE-2006-5730 14 Nov 2006 5.1 (v2) Medium Pass IBM WebSphere Application Server SOAP Connector Error Page XSS CVE-2006-2431 16 Nov 2006 4.3 (v2) Medium Pass Etomite CMS index.php id Parameter SQL Injection CVE-2006-6048 23 Nov 2006 6.8 (v2) Medium Pass HSQLDB Server Default Credentials 27 Nov 2006 7.5 (v2) High Pass IBM WebSphere Application Server '%20' Request Source Disclosure CVE-2005-0425 14 Nov 2006 5 (v2) Medium Pass IBM WebSphere snoopservlet Path Disclosure 14 Nov 2006 5 (v2) Medium Pass ManageEngine ADAudit Plus < Build 7060 XXE RCE CVE-2022-28219 27 Apr 2022 9.8 (v3) Critical Pass Serendipity serendipity_event_bbcode.php Script serendipity[charset] Parameter Local File Inclusion CVE-2006-6242 01 Dec 2006 6.8 (v2) Medium Pass PHP Easy Download admin/save.php moreinfo Parameter Code Injection 07 Dec 2006 7.5 (v2) High Pass Patch Management: HCL BigFix Get Installed Packages 27 Apr 2022 None Pass Cisco IOS XE Software DECnet Phase IV/OSI DoS (cisco-sa-iosxe-decnet-dos-cuPWDkyL) CVE-2021-1352 20 May 2021 6.5 (v3) Medium Pass Microsoft Azure CycleCloud Privilege Escalation (CVE-2021-33762) CVE-2021-33762 13 Aug 2021 7.8 (v3) High Pass Cisco IOS Software PTP DoS Vulnerability (cisco-sa-20180926-ptp) CVE-2018-0473 05 Oct 2018 8.6 (v3) High Pass Cisco Catalyst 4000 Series Switches TCP Denial of Service Vulnerability (cisco-sa-20190925-cat4000-tcp-dos)CVE-2019-12652 04 Oct 2019 7.5 (v3) High Pass Cisco IOx Application Environment DoS Vulnerability (cisco-sa-20190925-iox) CVE-2019-12656 09 Oct 2019 7.5 (v3) High Pass Juniper Junos OS DoS (JSA11184) CVE-2021-0280 14 Sep 2021 7.5 (v3) High Pass Juniper Junos OS DoS (JSA11186) CVE-2021-0282 14 Sep 2021 7.5 (v3) High Pass JCE Admin Component for Joomla! 'plugin' Parameter Local File Include CVE-2006-6419 10 Dec 2006 7.3 (v3) High Pass Liferay Portal 7.3.5 Stored XSS CVE-2021-29046 21 Sep 2021 6.1 (v3) Medium Pass phpWebThings core/editor.php editor_insert_bottom Parameter Remote File Inclusion CVE-2006-6042 10 Dec 2006 6.8 (v2) Medium Pass ICCP/COTP TSAP Addressing Weakness 11 Dec 2006 5 (v2) Medium Pass Schneider Electric FTP Server Default Credentials 11 Dec 2006 10 (v3) Critical Pass VMware vCenter Server < 7.0 U2d Multiple Vulnerabilities (VMSA-2021-0020) CVE-2021-22011 CVE-2021-22018 22 Sep 2021 6.5 (v3) Medium Pass Apache >= 2.4.17 < 2.4.49 mod_http2 CVE-2021-33193 23 Sep 2021 7.5 (v3) High Pass Modicon Quantum Telnet Server Default Credentials 11 Dec 2006 6.4 (v2) Medium Pass Kerio MailServer < 6.3.1 Long LDAP Query DoS CVE-2006-6554 15 Dec 2006 5 (v2) Medium Pass PHP-Update blog.php Variable Overwriting Arbitrary Code Execution CVE-2006-6661 20 Dec 2006 7.5 (v2) High Pass TYPO3 'spell-check-logic.php' 'userUid' Parameter Arbitrary Command Execution CVE-2006-6690 21 Dec 2006 8.8 (v3) High Pass IBM DB2 < 8.1 FixPak 12 EXCSAT Long MGRLVLLS Message Remote DoS CVE-2006-3066 23 Dec 2006 5.3 (v3) Medium Pass IBM DB2 < 8.1 Fix Pack 14 Multiple Vulnerabilities CVE-2006-6638 CVE-2007-1228 23 Dec 2006 5.3 (v3) Medium Pass Cacti cmd.php Multiple Parameter SQL Injection Arbitrary Command Execution CVE-2006-6799 02 Jan 2007 7.5 (v2) High Pass Cacti copy_cacti_user.php template_user Variable SQL Injection 02 Jan 2007 7.5 (v2) High Pass Ultimate PHP Board chat/login.php username Parameter Arbitrary Command Execution CVE-2006-6790 02 Jan 2007 8.8 (v3) High Pass phpMyFAQ < 1.6.8 Multiple SQL Injection Vulnerabilities CVE-2006-6912 CVE-2006-6913 10 Jan 2007 7.5 (v2) High Pass Oreon lang/index.php ﬁle Parameter Remote File Inclusion CVE-2007-0360 19 Jan 2007 7.5 (v2) High Pass Website Baker REMEMBER_KEY Cookie SQL Injection CVE-2007-0527 23 Jan 2007 6.8 (v2) Medium Pass Apache Log4Shell RCE detection via callback correlation (Direct Check HTTP) CVE-2021-44228 11 Dec 2021 10 (v3) Critical Pass ARCserve Backup for Laptops & Desktops Server Detection 26 Jan 2007 None Pass PHProxy Detection 30 Jan 2007 None Pass Drupal Multiple Module $_SESSION Manipulation CAPTCHA Bypass CVE-2007-0658 01 Feb 2007 5 (v2) Medium Pass Drupal Comment Function Arbitrary Code Execution CVE-2007-0626 01 Feb 2007 5.1 (v2) Medium Pass Drupal Comment Module comment_form_add_preview() Function Arbitrary Code Execution CVE-2007-0626 01 Feb 2007 5.1 (v2) Medium Pass ExoPHPDesk faq.php id Parameter SQL Injection CVE-2007-0676 01 Feb 2007 6.8 (v2) Medium Pass Default Password (oracle) for 'oracle' Account CVE-1999-0502 06 Feb 2007 9.8 (v3) Critical Pass Advanced Poll admin/index.php Session Identiﬁer Replay Authentication Bypass CVE-2007-0845 08 Feb 2007 7.5 (v2) High Pass AXIGEN Mail Server < 2.0.0 Multiple Remote Vulnerabilities CVE-2007-0886 CVE-2007-0887 09 Feb 2007 10 (v2) Critical Pass Solaris 10 Forced Login Telnet Authentication Bypass CVE-2007-0882 12 Feb 2007 10 (v2) Critical Pass LifeType rss.php proﬁle Parameter Traversal Arbitrary File Access CVE-2007-0979 16 Feb 2007 5 (v2) Medium Pass phpMyFAQ < 1.6.10 Multiple Script Arbitrary File Upload CVE-2007-1032 20 Feb 2007 6.8 (v2) Medium Pass ZPanel 2.0 Multiple Script Remote File Inclusion CVE-2005-0793 CVE-2007-1123 23 Feb 2007 7.5 (v2) High Pass IBM DB2 < 9 Fix Pack 2 Multiple Vulnerabilities CVE-2007-1086 CVE-2007-1087 CVE-2007-1088 CVE-2007-1228 23 Feb 2007 9.8 (v3) Critical Pass Pagesetter for PostNuke index.php id Parameter Traversal Arbitrary File Access CVE-2007-1158 27 Feb 2007 5 (v2) Medium Pass OrangeHRM login.php txtUserName Parameter SQL Injection CVE-2007-1193 01 Mar 2007 9.3 (v2) High Pass Juniper Junos OS Vulnerability (JSA11278) CVE-2022-22172 12 Jan 2022 6.5 (v3) Medium Pass Default Password (password) for 'root' Account CVE-1999-0502 CVE-2006-5288 CVE-2012-4577 01 Mar 2007 9.8 (v3) Critical Pass getID3 < 1.7.8-b1 Multiple Remote Vulnerabilities CVE-2007-1035 01 Mar 2007 7.5 (v2) High Pass Atlassian JIRA XSRF, Open Redirect, and Access Control Bypass Vulnerabilities CVE-2018-13400 CVE-2018-13401 CVE-2018-13402 02 Nov 2018 6.1 (v3) Medium Pass Apache Struts Conﬁg Browser Plugin Detection 15 Feb 2019 5.3 (v3) Medium Pass VMware AirWatch Console HTTP Detection 02 Feb 2018 None Pass Linksys Smart Wi-Fi Web Interface Detection 19 Jul 2017 None Pass Advantech WebAccess SQLi CVE-2017-5154 30 Jan 2017 9.8 (v3) Critical Pass Intel Management Engine Authentication Bypass (INTEL-SA-00075) (remote check) CVE-2017-5689 04 May 2017 9.8 (v3) Critical Pass H3C / HPE Intelligent Management Center accessMgrServlet Java Object Deserialization RCE CVE-2017-5790 28 Apr 2017 9.8 (v3) Critical Pass Flexera FlexNet Publisher Detection 24 Mar 2016 None Pass H3C / HPE Intelligent Management Center Java Object Deserialization RCE CVE-2016-4372 23 Aug 2016 9.8 (v3) Critical Pass Topsec Firewall Cookie Command Injection (ELIGIBLECANDIDATE) 25 Oct 2016 9.8 (v3) Critical Pass Advantech WebAccess 7.2 < 7.2-2014.07.30 Multiple ActiveX RCE CVE-2014-0985 CVE-2014-0986 CVE-2014-0987 CVE-2014-0988 CVE-2014-0989 CVE-2014-0990 CVE-2014-0991 CVE-2014-0992 24 Aug 2015 6.8 (v2) Medium Pass Ipswitch IMail Server < 2006.2 Multiple Remote Overﬂows CVE-2007-1637 07 Mar 2007 9.3 (v2) High Pass Advantech WebAccess < 7.0-2011.12.20 Multiple Vulnerabilities 28 Aug 2015 7.5 (v2) High Pass LedgerSMB / SQL-Ledger ﬁle Parameter Multiple Vulnerabilities 09 Mar 2007 7.5 (v2) High Pass LedgerSMB / SQL-Ledger admin.pl Admin Authentication Bypass CVE-2007-1436 09 Mar 2007 7.5 (v2) High Pass Advantech WebAccess openWidget Script Path Traversal Remote File Disclosure CVE-2016-0855 18 Feb 2016 7.5 (v3) High Pass HP Universal Conﬁguration Management Database Data Flow Probe Gateway Detection 18 Mar 2015 None Pass RuggedCom RuggedOS < 3.12.2 Multiple Vulnerabilities CVE-2013-6925 CVE-2013-6926 07 Oct 2013 8.3 (v2) High Pass Palo Alto Networks PAN-OS Firewall/Panorama Web UI Detection 17 Dec 2013 None Pass TightVNC Java Viewer Detection 09 Jan 2014 None Pass Dell KACE K1000 Web Detection 07 Feb 2014 None Pass CommonSpot Detection 17 Apr 2014 None Pass Advantech WebAccess < 7.2-2014.06.06 Multiple Vulnerabilities CVE-2014-2364 CVE-2014-2365 CVE-2014-2366 CVE-2014-2367 CVE-2014-2368 14 Apr 2014 7.5 (v2) High Pass Oracle OpenSSO Detection 28 Apr 2014 None Pass Blackboard Learn Detection 13 Jun 2014 None Pass HP OneView Detection 13 Jun 2014 None Pass Oracle Traﬃc Director Administration Console Detection 31 Jul 2014 None Pass IBM Rational License Key Server Administration and Reporting Tool Detection 16 Sep 2014 None Pass Horde NLS.php Language Selection new_lang Parameter XSS CVE-2007-1473 16 Mar 2007 4.3 (v2) Medium Pass MS14-066: Vulnerability in Schannel Could Allow Remote Code Execution (2992611) (uncredentialed check)CVE-2014-6321 01 Dec 2014 8.8 (v3) High Pass Umbraco Detection 13 Aug 2012 None Pass IOServer XML Server URI Directory Traversal Arbitrary File Access CVE-2012-4680 19 Nov 2012 4.3 (v2) Medium Pass VMware vCenter Detect 27 Nov 2012 None Pass Jenkins Enterprise and Operations Center < 2.289.3.2 rev 2 Bad Permissions (CloudBees Security Advisory 2021-08-02) 11 Oct 2021 3.3 (v3) Low Pass Piwik Detection 28 Nov 2012 None Pass Jenkins Enterprise and Operations Center < 2.249.32.0.1 / 2.277.41.0.1 / 2.303.1.5 Bad Permissions (CloudBees Security Advisory 2021-08-25) 11 Oct 2021 2.4 (v3) Low Pass RWCards Component for Joomla! 'category_id' Parameter SQLi CVE-2007-1703 27 Mar 2007 5.6 (v3) Medium Pass MS13-006: Vulnerability in Microsoft Windows Could Allow Security Feature Bypass (2785220) (uncredentialed check)CVE-2013-0013 22 Jan 2013 5.8 (v2) Medium Pass HP LeftHand OS hydra Detection 14 Feb 2013 None Pass Atlassian Crowd Detection 03 Jul 2013 None Pass Virtualizor Detection 24 Jul 2013 None Pass Oracle TNS Listener Remote Poisoning CVE-2012-1675 26 Aug 2013 7.3 (v3) High Pass Meeting Room Booking System typematch Parameter SQL Injection CVE-2009-3533 18 Oct 2010 7.5 (v2) High Pass Mambo task Parameter XSS 05 Jul 2011 4.3 (v2) Medium 88

RELAYTO Penetration Test Results - Page 88

RELAYTO Penetration Test Results Page 87 Page 89