Pass ReviewPost PHP Pro Multiple Script SQL Injections CVE-2004-2175 04 Feb 2004 7.5 (v2) High Pass IBM DataPower Gateway Security Bypass CVE-2019-4621 20 Jul 2020 9.8 (v3) Critical Pass Telnetd - Remote Code Execution (CVE-2020-10188) CVE-2020-10188 26 May 2020 9.8 (v3) Critical Pass CA BrightStor ARCserve Backup RPC Interface (asdbapi.dll) Traversal Arbitrary Command Execution CVE-2008-4397 14 Oct 2008 10 (v2) Critical Pass Cisco IOS XE Software SD WAN vDaemon DoS (cisco-sa-iosxe-sdwdos-4zeEeC9w) CVE-2021-1431 06 Apr 2021 7.5 (v3) High Pass FTP Supports Cleartext Authentication 01 Oct 2008 2.6 (v2) Low Pass ESXi 5.0 < Build 1311175 Multiple Vulnerabilities (remote check) CVE-2013-0166 CVE-2013-0169 CVE-2013-0338 CVE-2013-5970 CVE-2013-5973 CVE-2014-1207 CVE-2014-1208 13 Nov 2013 4.4 (v2) Medium Pass Blue Coat Reporter Default Password (admin) for 'admin' Account 06 Oct 2008 7.5 (v2) High Pass OpenNMS Web Console Default Credentials 07 Oct 2008 7.5 (v2) High Pass MS08-065: Microsoft Windows Message Queuing Service RPC Request Handling Remote Code Execution (951071) (uncrCVE-2008-3479edentialed check) 15 Oct 2008 10 (v2) Critical Pass Palo Alto Networks PAN-OS 9.1.x < 9.1.3 Integer Underflow Vulnerability CVE-2020-2031 09 Jul 2020 4.9 (v3) Medium Pass ManageEngine Desktop Central AgentLogUploadServlet Arbitrary File Upload RCE (intrusive check) CVE-2013-7390 04 Dec 2013 10 (v2) Critical Pass Juniper Junos J-Web Interface PHP URL Handling Use-after-free RCE (JSA10828) CVE-2018-0001 26 Jan 2018 9.8 (v3) Critical Pass CCProxy < 6.62 HTTP Proxy CONNECT Request Handling Remote Overflow CVE-2008-6415 24 Oct 2008 10 (v2) Critical Pass Tivoli Directory Server ldacgi.exe Template Parameter Traversal Arbitrary File Access CVE-2004-2526 02 Aug 2004 5 (v2) Medium Pass MySQL Enterprise Server 5.0 < 5.0.70 Privilege Bypass CVE-2008-2079 CVE-2008-4098 09 Nov 2008 4.6 (v2) Medium Pass Juniper Junos Flowd TCP/IP Response Packet Handling Remote DoS (JSA10829) CVE-2018-0002 26 Jan 2018 7.5 (v3) High Pass Intel Active Management Technology (AMT) Web UI Clickjacking Weakness (INTEL-SA-00081) (remote check)CVE-2017-5697 30 Jun 2017 6.5 (v3) Medium Pass phpPgAdmin index.php _language Parameter Local File Inclusion CVE-2008-5587 08 Dec 2008 6.8 (v2) Medium Pass Apple iTunes < 11.1.4 Multiple Vulnerabilities (uncredentialed check) CVE-2011-3102 CVE-2012-0841 CVE-2012-2807 CVE-2012-2825 CVE-2012-2870 CVE-2012-2871 CVE-2012-5134 CVE-2013-1024 CVE-2013-1037 CVE-2013-1038 CVE-2013-1039 CVE-2013-1040 CVE-2013-1041 CVE-2013-1042 CVE-2013-1043 CVE-2013-1044 CVE-2013-1045 CVE-2013-1046 CVE-2013-1047 CVE-2013-2842 CVE-2013-5125 CVE-2013-5126 CVE-2013-5127 CVE-2013-5128 CVE-2014-124223 Jan 2014 7.5 (v2) High Pass HTTP Backdoor Detection deprecated 08 Jan 2009 10 (v2) Critical Pass EMC Data Protection Advisor 6.4 / 6.5 / 18.1 OS Command Injection (DSA-2020-081) CVE-2020-5352 17 Jul 2020 8.8 (v3) High Pass WP-Forum Plugin for WordPress 'forum_feed.php' 'thread' Parameter SQL Injection 14 Jan 2009 7.5 (v2) High Pass 2BGal disp_album.php id_album Parameter SQL Injection CVE-2004-1415 23 Dec 2004 7.5 (v2) High Pass UPnP Internet Gateway Device (IGD) Protocol Detection 19 Feb 2009 6.3 (v3) Medium Pass EMC RepliStor Multiple Remote Heap Based Buffer Overflows CVE-2007-6426 27 Jan 2009 10 (v2) Critical Pass NaviCOPA Trailing Dot Source Code Disclosure 05 Feb 2009 5 (v2) Medium Pass Synology DiskStation Manager 4.3-x < 4.3-3810 Update 1 Multiple Vulnerabilities CVE-2013-6955 05 Feb 2014 10 (v2) Critical Pass Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-001) 01 Feb 2009 10 (v2) Critical Pass Sun Java System Directory Server 6.x < 6.3.1 LDAP JDBC Backend DoS CVE-2009-0609 13 Feb 2009 5 (v2) Medium Pass Default Password (password) for 'admin' Account on Broadcom BCM96338 ADSL Router 09 Feb 2009 10 (v2) Critical Pass Default Password (profense) for 'operator' Account CVE-1999-0502 31 Jan 2009 9.8 (v3) Critical Pass NaviCOPA < 3.01 6th February 2009 Multiple Vulnerabilities 09 Feb 2009 10 (v2) Critical Pass Profense Web Application Firewall Default Credentials 03 Feb 2009 7.5 (v2) High Pass Trend Micro InterScan Web Security Suite Default Credentials 12 Feb 2009 7.5 (v2) High Pass CjOverkill trade.php Multiple Method XSS CVE-2004-2193 12 Oct 2004 4.3 (v2) Medium Pass Juniper Junos VLAN authentication processing DoS (JSA10834) CVE-2018-0006 26 Jan 2018 7.5 (v3) High Pass UPnP Internet Gateway Device (IGD) Port Mapping Manipulation 19 Feb 2009 6.3 (v3) Medium Pass ProFTPD Username Variable Substitution SQL Injection CVE-2009-0542 17 Feb 2009 7.5 (v2) High Pass FreeBSD telnetd sys_term.c Environment Variable Handling Privilege Escalation (FreeBSD-SA-09:05) CVE-2009-0641 17 Feb 2009 7.6 (v2) High Pass Novell eDirectory < 8.8 SP3 FTF3 iMonitor HTTP Accept-Language Header Overflow 03 Mar 2009 10 (v2) Critical Pass Apple iTunes < 8.1 Multiple Vulnerabilities (uncredentialed check) CVE-2009-0016 CVE-2009-0143 13 Mar 2009 5 (v2) Medium Pass Apache Tomcat 8.0.x < 8.0.15 Multiple Vulnerabilities (POODLE) CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3509 CVE-2014-3510 CVE-2014-3511 CVE-2014-3512 CVE-2014-3513 CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 CVE-2014-513905 Mar 2015 7.3 (v3) High Pass Tenable Security Center Default Credentials 26 Mar 2009 7.5 (v2) High Pass Xlight FTP Server Authentication SQL Injection CVE-2009-4795 31 Mar 2009 7.5 (v2) High Pass mod_perl Apache::Status Info Disclosure 07 Apr 2009 5 (v2) Medium Pass Linksys WVC54GCA Wireless-G '/img/main.cgi' Information Disclosure CVE-2009-1556 24 Apr 2009 6.8 (v2) Medium Pass Default Password (admin) for 'root' Account CVE-1999-0502 23 Jul 2009 9.8 (v3) Critical Pass Memcached / MemcacheDB ASLR Bypass Weakness CVE-2009-1255 29 Apr 2009 5 (v2) Medium Pass A-A-S Application Access Server Default Admin Password CVE-2009-1465 14 May 2009 10 (v2) Critical Pass Oracle GlassFish Server Administration Console Default Credentials 07 May 2009 7.5 (v2) High Pass Icecast XSL Parser Multiple Vulnerabilities (OF, ID) CVE-2005-0837 CVE-2005-0838 22 Mar 2005 5 (v2) Medium Pass Atmail WebMail <= 5.6.0 (5.60) Email Body Injection 30 Apr 2009 4.3 (v2) Medium Pass ESXi 5.0 < Build 1918656 OpenSSL Library Multiple Vulnerabilities (remote check) CVE-2010-5298 CVE-2014-0198 CVE-2014-0224 CVE-2014-3470 04 Jul 2014 5.8 (v2) Medium Pass Microsoft IIS WebDAV Unicode Request Directory Security Bypass CVE-2009-1535 18 May 2009 7.5 (v2) High Pass Sendmail < 8.13.2 Mail X-Header Handling Remote Overflow CVE-2009-1490 24 May 2009 5.3 (v3) Medium Pass MS09-039: Vulnerabilities in WINS Could Allow Remote Code Execution (969883) (uncredentialed check) CVE-2009-1923 CVE-2009-1924 12 Aug 2009 10 (v2) Critical Pass Sun Java System Calendar Server login.wcap Fmt-out Parameter XSS CVE-2009-1218 27 May 2009 4.3 (v2) Medium Pass WP-Lytebox 'pg' Parameter Local File Inclusion CVE-2009-4672 27 May 2009 6.8 (v2) Medium Pass OpenSSH < 5.9 Multiple DoS CVE-2010-4755 CVE-2011-5000 18 Nov 2011 4 (v2) Medium Pass News Server (NNTP) Anonymous Read Access 08 Jun 2009 2.6 (v2) Low Pass MikroTik RouterOS with Blank Password (HTTP) CVE-1999-0508 17 Jun 2009 10 (v2) Critical Pass IBM WebSphere Application Server 8.5 < Fix Pack 8.5.5.3 Multiple Vulnerabilities CVE-2014-0076 CVE-2014-0098 CVE-2014-0963 CVE-2014-0965 CVE-2014-3022 CVE-2014-3070 CVE-2014-3083 CVE-2014-4244 CVE-2014-4263 CVE-2014-4764 CVE-2014-476729 Aug 2014 6.5 (v2) Medium Pass RIP-1 Poisoning Routing Table Modification 02 Jul 2009 5.8 (v2) Medium Pass CGI Generic Remote File Inclusion 19 Jun 2009 7.5 (v2) High Pass RIP Poisoning Routing Table Modification (Adjacent Network) 02 Jul 2009 5.8 (v2) Medium Pass PostgreSQL LDAP Anonymous Bind Authentication Bypass CVE-2009-3231 11 Sep 2009 6.8 (v2) Medium Pass Sun Java Web Console helpwindow.jsp / masthead.jsp Multiple XSS CVE-2009-2283 02 Jul 2009 4.3 (v2) Medium Pass RIP-2 Poisoning Routing Table Modification 02 Jul 2009 5.4 (v2) Medium Pass EMC RSA Authentication Manager < 8.2 SP1 Patch 5 Reflected Cross-Site Scripting (ESA-2017-134) CVE-2017-14373 03 Nov 2017 6.1 (v3) Medium Pass OpenSSL 0.9.8 < 0.9.8zc Multiple Vulnerabilities (POODLE) CVE-2014-3566 CVE-2014-3567 CVE-2014-3568 17 Oct 2014 4.3 (v2) Medium Pass Sun Java System Web Server ::$DATA Extension Request JSP Resource Disclosure CVE-2009-2445 07 Jul 2009 5 (v2) Medium Pass FCKeditor.Java Connector Servlet 'CurrentFolder' Infinite Loop DoS CVE-2009-4875 20 Jul 2009 5 (v2) Medium Pass Alibaba Web Server 2.0 HTTP Request Overflow DoS CVE-2000-0626 29 Oct 1999 9.3 (v2) High Pass O'Reilly WebSite win-c-sample Remote Overflow CVE-1999-0178 22 Jun 1999 7.5 (v2) High Pass Cisco Content Security Management Appliance Privilege Escalation Vulnerability CVE-2018-0095 26 Jan 2018 7.8 (v3) High Pass RPC bootparamd Service Information Disclosure (Deprecated) 30 Aug 1999 5 (v2) Medium Pass CDK Backdoor Detection 20 Feb 2000 10 (v2) Critical Pass CERN httpd Virtual Web Path Disclosure CVE-2000-0079 20 Jan 2000 5 (v2) Medium Pass AltaVista Intranet Search CGI query Traversal Arbitrary File Access CVE-2000-0039 09 Jan 2000 5 (v2) Medium Pass F5 BIG/ip bigconf.cgi file Parameter Arbitrary File Access CVE-1999-1550 10 Nov 1999 7.5 (v2) High Pass BFTelnet Username Handling Remote Overflow DoS CVE-1999-0904 04 Nov 1999 10 (v2) Critical Pass VMware vRealize Operations Manager ver 6.x < 6.40 Suite API CollectorHttpRelayController RelayRequest Object DiskFileItem Deserialization DoSCVE-2016-7462 01 Dec 2016 8.5 (v3) High Pass Check Point FireWall-1 Identification 27 Jul 1999 5 (v2) Medium Pass DeleGate Multiple Function Remote Overflows CVE-2000-0165 14 Nov 1999 10 (v2) Critical Pass Eserv GET Request Traversal Arbitrary File Access CVE-1999-1509 05 Nov 1999 5 (v2) Medium Pass Alcatel PABX 4400 Detection 08 Jun 2002 None Pass FakeBO NetBus Handling Code Remote Overflow 22 Jun 1999 7.5 (v2) High Pass Finger Service Remote Information Disclosure CVE-1999-0612 22 Jun 1999 5 (v2) Medium Pass Finger 0@host Unused Account Disclosure CVE-1999-0197 22 Jun 1999 5 (v2) Medium Pass Finger .@host Unused Account Disclosure CVE-1999-0198 22 Jun 1999 5 (v2) Medium Pass EZShopper Multiple Directory Traversal Vulnerabilities CVE-2000-0187 CVE-2000-0188 28 Feb 2000 5 (v2) Medium Pass HylaFAX faxsurvey Arbitrary Command Execution CVE-1999-0262 22 Jun 1999 7.5 (v2) High Pass Matthew Wright FormMail CGI (formmail.cgi) Arbitrary Mail Relay CVE-1999-0172 01 Dec 1999 7.5 (v2) High Pass Linux FTP Server Backdoor Detection CVE-1999-0452 22 Jun 1999 9.8 (v3) Critical Pass Anonymous FTP Writable root Directory CVE-1999-0527 22 Jun 1999 9.8 (v3) Critical Pass Apache 2.2.x < 2.2.15 Multiple Vulnerabilities CVE-2007-6750 CVE-2009-3555 CVE-2010-0408 CVE-2010-0425 CVE-2010-0434 20 Oct 2010 9.8 (v3) Critical Pass FTPd CWD Command Account Enumeration 12 Nov 1999 5 (v2) Medium Pass FTPGate Web Proxy Traversal Arbitrary File Access 05 Nov 1999 5 (v2) Medium Pass WU-FTPD QUOTE PASV Forced Core Dump Information Disclosure CVE-1999-0075 22 Jun 1999 6.4 (v2) Medium Pass Multiple FTP Server QUOTE CWD Command Home Path Disclosure CVE-1999-0201 22 Jun 1999 6.4 (v2) Medium Pass Anonymous FTP Enabled CVE-1999-0497 22 Jun 1999 5.3 (v3) Medium Pass IMail IMonitor Service Remote Overflow CVE-1999-1046 CVE-2000-0056 22 Jun 1999 7.5 (v2) High Pass SCO UnixWare i2odialogd daemon Username Authorization String Overflow CVE-2000-0026 22 Dec 1999 10 (v2) Critical Pass iChat Server Traversal Arbitrary File Access CVE-1999-0897 22 Jun 1999 5 (v2) Medium Pass Puppet Enterprise 2.x < 2.6.1 Session Handling Weakness CVE-2012-5158 07 Apr 2014 4 (v2) Medium Pass ht://Dig < 3.1.5 htsearch CGI Multiple Vulnerabilities CVE-1999-0978 CVE-2000-0208 03 Mar 2000 5 (v2) Medium Pass IMail IMAP Server Login Functions Remote Overflow CVE-1999-1557 22 Jun 1999 7.5 (v2) High Pass INN < 1.6 Multiple Vulnerabilities CVE-1999-0705 CVE-1999-0043 CVE-1999-0247 25 Aug 1999 10 (v2) Critical Pass UoW IMAP/POP server_login() Function Remote Overflow CVE-1999-0042 22 Jun 1999 10 (v2) Critical Pass in.fingerd Pipe Input Arbitrary Command Execution CVE-1999-0152 22 Jun 1999 7.5 (v2) High Pass Microsoft IIS FTP Server NLST Command Overflow DoS CVE-1999-0349 22 Jun 1999 5 (v2) Medium 5
RELAYTO Penetration Test Results Page 4 Page 6