AI Content Chat (Beta) logo

Pass osTicket open.php Support Address Crafted Mail Loop Remote DoS 30 Jul 2004 7.8 (v2) High Pass IlohaMail Forged GET/POST Arbitrary Contacts Deletion 02 Sep 2004 5 (v2) Medium Pass PHP Topsites counter.php count_log_file Parameter Arbitrary File Overwrite 09 May 2003 5 (v2) Medium Pass 12Planet Chat Server Error Message Path Disclosure 07 May 2003 5 (v2) Medium Pass Cisco Small Business RV110W Wireless-N VPN Firewall Static Default Credential (cisco-sa-rv110w-static-crCVE-2020-3330ed-BMTWBWTy) 21 Aug 2020 9.8 (v3) Critical Pass Apache OFBiz Log4Shell Direct Check (CVE-2021-44228) CVE-2021-44228 05 Jan 2022 10 (v3) Critical Pass Helix Servers View Source Plug-in RTSP Parser Overflow CVE-2003-0725 21 May 2003 10 (v2) Critical Pass MAILsweeper for SMTP PowerPoint Document Processing DoS CVE-2003-1477 27 May 2003 7.8 (v2) High Pass Crob FTP Server user Field Remote Format String 02 Jun 2003 9.8 (v3) Critical Pass SMC2804WBR Router Default Password (smcadmin) 22 Feb 2004 7.5 (v2) High Pass P-News p-news.php Name Field Privilege Escalation 29 May 2003 6.5 (v2) Medium Pass CVSTrac chdir() chroot Jail Escape 17 Aug 2004 6.4 (v2) Medium Pass Leif Wright Web Blog blog.cgi ViewFile Request file Parameter Arbitrary Command Execution CVE-2004-2347 02 Feb 2004 7.5 (v2) High Pass iWebNegar Multiple Scripts SQL Injection CVE-2004-1402 15 Dec 2004 7.5 (v2) High Pass FTGate <= 4.4.002 Multiple Remote Vulnerabilities (OF, FS, XSS) CVE-2005-4567 CVE-2005-4568 CVE-2005-4569 21 Dec 2005 7.5 (v2) High Pass CVSTrac Malformed URI Infinite Loop DoS 17 Aug 2004 5 (v2) Medium Pass Apache Log4Shell RCE detection via callback correlation (Direct Check RPCBIND) CVE-2021-44228 07 Jan 2022 10 (v3) Critical Pass Retrospect Backup Client Multiple Vulnerabilities (ESA-08-009) CVE-2008-3287 CVE-2008-3289 CVE-2008-3290 23 Jul 2008 5 (v2) Medium Pass AntiBoard antiboard.php Multiple Parameter SQL Injection CVE-2004-2062 CVE-2004-2063 02 Aug 2004 4.3 (v2) Medium Pass Kerio MailServer < 6.0.1 Embedded HTTP Server Unspecified Issue 16 Aug 2004 10 (v2) Critical Pass Xedus Webserver Multiple XSS CVE-2004-1645 03 Sep 2004 5 (v2) Medium Pass WS_FTP Server Multiple Vulnerabilities (OF, DoS, Cmd Exec) CVE-2004-1848 CVE-2004-1883 CVE-2004-1884 CVE-2004-1885 01 Sep 2004 10 (v2) Critical Pass IlohaMail Email Header XSS 02 Sep 2004 4.3 (v2) Medium Pass GeoHttpServer Unauthorized Image Access Vulnerability CVE-2005-1552 10 May 2005 5 (v2) Medium Pass bBlog rss.php p Parameter SQL Injection CVE-2004-1570 13 Oct 2004 7.5 (v2) High Pass MailMarshal Spam Quarantine Management (SQM) Multiple Component XSS CVE-2008-2831 03 Oct 2008 3.5 (v2) Low Pass PHP rfc1867.c $_FILES Array Crafted MIME Header Arbitrary File Upload CVE-2004-0959 17 Sep 2004 2.1 (v2) Low Pass Cherokee Web Server Port Bind Privilege Drop Weakness CVE-2001-1433 04 Nov 2004 7.5 (v2) High Pass Apache Log4Shell RCE detection via callback correlation (Direct Check MSRPC) CVE-2021-44228 12 Jan 2022 10 (v3) Critical Pass Ipswitch IMail IMAP Service DELETE Command Remote Overflow CVE-2004-1520 19 Nov 2004 4.6 (v2) Medium Pass JanaServer < 2.4.5 Multiple Remote DoS 30 Nov 2004 7.8 (v2) High Pass Microsoft IE FRAME/IFRAME/EMBED Tag Overflow (Bofra Worm Detection) CVE-2004-1050 17 Nov 2004 10 (v2) Critical Pass IBProArcade index.php Arcade Module gameid Parameter SQL Injection CVE-2004-1430 02 Jan 2005 7.5 (v2) High Pass Hydra: LDAP 01 Dec 2004 7.5 (v2) High Pass NFS Share User Mountable 16 Dec 2004 7.3 (v3) High Pass IlohaMail < 0.8.14RC1 Unspecified Vulnerability CVE-2004-2500 11 Dec 2004 10 (v2) Critical Pass CVSTrac < 1.1.5 Multiple XSS CVE-2004-1146 19 Dec 2004 4.3 (v2) Medium Pass MPM Guestbook Pro top.php Traversal Arbitrary File Access 14 Jan 2005 5 (v2) Medium Pass SunShop Shopping Cart index.php search Parameter XSS 08 Feb 2005 4.3 (v2) Medium Pass Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution (cisco-sa-rv-rCVE-2020-3323 ce-AQKREqp) 18 Aug 2020 9.8 (v3) Critical Pass Cisco Data Center Network Manager Command Injection (cisco-sa-20200102-dcnm-comm-inject) CVE-2019-15978 CVE-2019-15979 17 Sep 2020 7.2 (v3) High Pass Atmail WebMail <= 5.6.1 (5.61) webadmin/admin.php Multiple Parameter XSS CVE-2009-2455 30 Apr 2009 4.3 (v2) Medium Pass OpenSSH < 3.4p1 scp Traversal Arbitrary File Overwrite CVE-2004-0175 18 Nov 2011 4.3 (v2) Medium Pass TikiWiki File Upload temp Directory Arbitrary Script Execution CVE-2005-0200 24 Jan 2005 7.5 (v2) High Pass IBM WebSphere Commerce ResetPassword Servlet Caching Information Disclosure 16 Mar 2005 2.6 (v2) Low Pass OPIE w/ OpenSSH Account Enumeration CVE-2007-2768 18 Nov 2011 4.3 (v2) Medium Pass Oracle WebLogic JSP Pages Unspecified Information Disclosure (CVE-2008-2580) CVE-2008-2580 30 Nov 2011 5 (v2) Medium Pass Red Hat Enterprise Linux OpenSSH ChrootDirectory Local Privilege Escalation CVE-2009-2904 18 Nov 2011 6.8 (v2) Medium Pass OpenSSL < 0.9.6m / 0.9.7d Denial of Service CVE-2004-0079 CVE-2004-0112 04 Jan 2012 5 (v2) Medium Pass OpenSSL < 0.9.8i Denial of Service CVE-2009-1386 04 Jan 2012 5 (v2) Medium Pass macOS 10.12.x < 10.12.3 Multiple Vulnerabilities CVE-2016-1248 CVE-2016-8670 CVE-2016-8687 CVE-2016-9933 CVE-2016-9934 CVE-2017-2353 CVE-2017-2357 CVE-2017-2358 CVE-2017-2360 CVE-2017-2361 CVE-2017-2370 CVE-2017-237124 Jan 2017 7.8 (v3) High Pass Xerox WorkCentre MicroServer Multiple Vulnerabilities (XRX05-005) CVE-2005-0703 CVE-2005-1179 09 May 2005 7.5 (v2) High Pass PunBB profile.php id Parameter SQL Injection CVE-2005-1051 08 Apr 2005 6.5 (v2) Medium Pass Apache Druid Log4Shell Direct Check (CVE-2021-44228) CVE-2021-44228 14 Jan 2022 10 (v3) Critical Pass Rendezvous < 7.5.1 HTTP Admin Interface Remote Overflow CVE-2006-2830 10 Jun 2006 7.5 (v2) High Pass CVS < 1.11.20 / 1.12.12 Multiple Unspecified Vulnerabilities CVE-2005-0753 20 Apr 2005 10 (v2) Critical Pass Woltlab Burning Board verify_email Function SQL Injection CVE-2005-1642 17 May 2005 7.5 (v2) High Pass NetWin DMail Server Multiple Remote Vulnerabilities CVE-2005-1478 CVE-2005-1516 05 May 2005 6 (v2) Medium Pass Microsoft Windows SMB Guest Account Local User Access CVE-1999-0505 04 Oct 2007 7.5 (v2) High Pass Cisco Prime Infrastructure Multiple Vulnerabilities (cisco-sa-20190515-pi-rce) CVE-2019-1821 CVE-2019-1822 CVE-2019-1823 05 Nov 2019 9.8 (v3) Critical Pass BEA WebLogic <= 8.1 SP4 Multiple Vulnerabilities (XSS, DoS, ID, more) CVE-2005-1380 CVE-2005-1742 CVE-2005-1743 CVE-2005-1744 CVE-2005-1745 CVE-2005-1746 CVE-2005-1747 CVE-2005-1748 CVE-2005-174924 May 2005 7.5 (v2) High Pass Hummingbird InetD FTP Component (ftpdw.exe) Command Overflow CVE-2005-1815 30 May 2005 7.5 (v2) High Pass VMware vRealize Operations Manager Log4Shell Direct Check (CVE-2021-44228) (VMSA-2021-0028) CVE-2021-44228 21 Jan 2022 10 (v3) Critical Pass Cisco VG248 Unpassworded Account 04 Aug 2005 10 (v2) Critical Pass Yaws Web Server .yaws Script Null Byte Request Source Code Disclosure CVE-2005-2008 17 Jun 2005 5 (v2) Medium Pass PHP-Nuke Gallery Add-on modules.php include Parameter Traversal Arbitrary File Access CVE-2001-0900 25 Nov 2001 5 (v2) Medium Pass CA eTrust Intrusion Detection CPImportKey Function Overflow DoS CVE-2005-0968 21 Jun 2005 5 (v2) Medium Pass Inframail SMTP MAIL FROM Command Remote Overflow DoS CVE-2005-2085 29 Jun 2005 7.5 (v2) High Pass GoCD < 21.3.0 Path Traversal (Direct) 25 Jan 2022 10 (v3) Critical Pass Qpopper .qpopper-options Username Handling Overflow CVE-2001-1046 02 May 2002 10 (v2) Critical Pass SSH 3 AllowedAuthentications Remote Bypass CVE-2002-1646 24 May 2002 3.5 (v2) Low Pass Cisco IOS XSS and XSRF Vulnerabilities CVE-2008-3821 CVE-2009-0470 11 Jan 2012 4.3 (v2) Medium Pass TYPSoft FTP Server Malformed STOR / RETR Command DoS CVE-2001-1156 21 Aug 2002 5 (v2) Medium Pass Microsoft Data Access Components RDS Data Stub Remote Overflow CVE-2002-1142 22 Nov 2002 7.5 (v2) High Pass Red Hat Interchange INET Mode Detection CVE-2002-0874 21 Sep 2002 5 (v2) Medium Pass Ipswitch WhatsUp Gold <= 8.04 Multiple Vulnerabilities 12 Sep 2005 5 (v2) Medium Pass Sendmail 8.8.8 - 8.12.7 Multiple Vulnerabilities (Bypass, OF) CVE-2002-1165 CVE-2002-1337 05 Mar 2003 10 (v2) Critical Pass PHP-Nuke Detection CVE-2001-0292 CVE-2001-0320 CVE-2001-0854 CVE-2001-0911 CVE-2001-1025 CVE-2002-0206 CVE-2002-0483 CVE-2002-1242 CVE-2003-1400 CVE-2003-143517 Feb 2003 7.5 (v2) High Pass SaveWebPortal <= 3.4 Multiple Vulnerabilities 09 Sep 2005 7.5 (v2) High Pass Qpopper pop_msg() Macroname Remote Overflow CVE-2003-0143 13 Mar 2003 6.5 (v2) Medium Pass SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure CVE-2000-0525 CVE-2000-1169 CVE-2001-0361 CVE-2001-0529 CVE-2001-0572 CVE-2001-0816 CVE-2001-0872 CVE-2001-1380 CVE-2001-1382 CVE-2001-1459 CVE-2001-1507 CVE-2001-1585 CVE-2002-0083 CVE-2002-0575 CVE-2002-0639 CVE-2002-0640 CVE-2002-0765 CVE-2003-0190 CVE-2003-0386 CVE-2003-0682 CVE-2003-0693 CVE-2003-0695 CVE-2003-0786 CVE-2003-0787 CVE-2003-1562 CVE-2004-0175 CVE-2004-1653 CVE-2004-2069 CVE-2004-2760 CVE-2005-2666 CVE-2005-2797 CVE-2005-2798 CVE-2006-0225 CVE-2006-4924 CVE-2006-4925 CVE-2006-5051 CVE-2006-5052 CVE-2006-5229 CVE-2006-5794 CVE-2007-2243 CVE-2007-2768 CVE-2007-3102 CVE-2007-4752 CVE-2008-1483 CVE-2008-1657 CVE-2008-3259 CVE-2008-4109 CVE-2008-516129 Aug 2011 10 (v2) Critical Pass Snitz Forums 2000 3.4.03 Multiple Vulnerabilities CVE-2003-0492 CVE-2003-0494 07 May 2003 6.8 (v2) Medium Pass WebWasher < 4.4.1 Build 1613 Multiple XSS 06 Oct 2005 4.3 (v2) Medium Pass Mobius DocumentDirect ddicgi.exe Long GET Request Overflow CVE-2000-0826 11 Jun 2003 10 (v2) Critical Pass BEA WebLogic FileServlet Source Code Disclosure CVE-2000-0682 11 Jun 2003 5 (v2) Medium Pass Mac OS X 10.6.x < 10.6.2 Multiple Vulnerabilities CVE-2009-0023 CVE-2009-1191 CVE-2009-1195 CVE-2009-1574 CVE-2009-1632 CVE-2009-1890 CVE-2009-1891 CVE-2009-1955 CVE-2009-1956 CVE-2009-2202 CVE-2009-2203 CVE-2009-2285 CVE-2009-2408 CVE-2009-2409 CVE-2009-2411 CVE-2009-2412 CVE-2009-2414 CVE-2009-2416 CVE-2009-2666 CVE-2009-2798 CVE-2009-2799 CVE-2009-2808 CVE-2009-2810 CVE-2009-2818 CVE-2009-2820 CVE-2009-2823 CVE-2009-2825 CVE-2009-2830 CVE-2009-2832 CVE-2009-2834 CVE-2009-2835 CVE-2009-2836 CVE-2009-2837 CVE-2009-2839 CVE-2009-323509 Nov 2009 10 (v2) Critical Pass Cisco IOS L2TP Parsing DoS (cisco-sa-20170322-l2tp) CVE-2017-3857 28 Mar 2017 7.5 (v3) High Pass Reachable IPv6 address 02 Apr 2010 None Pass Microsoft Windows 2000 Unsupported Installation Detection 13 Jul 2010 10 (v2) Critical Pass Usermin Null Byte Filtering Information Disclosure CVE-2006-4542 16 Sep 2014 6.8 (v2) Medium Pass ManageEngine SupportCenter Plus HomePage.do fromCustomer Parameter XSS 01 Nov 2012 4.3 (v2) Medium Pass Internet Key Exchange (IKE) Aggressive Mode with Pre-Shared Key CVE-2002-1623 24 Oct 2012 5.3 (v3) Medium Pass NetIQ Privileged User Manager ldapagnt_eval() Function Remote Code Execution (intrusive check) CVE-2012-5932 21 Nov 2012 9.8 (v3) Critical Pass Apache Tomcat 9.0.35 < 9.0.58 multiple vulnerabilities CVE-2022-23181 26 Jan 2022 7 (v3) High Pass ManageEngine ADSelfService Plus Default Administrator Credentials 14 Oct 2011 7.5 (v2) High Pass IBM WebSphere Application Server 7.0 < Fix Pack 23 Multiple Vulnerabilities CVE-2011-1377 CVE-2012-0193 CVE-2012-0716 CVE-2012-0717 CVE-2012-0720 CVE-2012-2170 27 Jun 2012 10 (v2) Critical Pass Traffic Analyzer Plugin for WordPress 'ta_loaded.js.php' 'aoid' Parameter XSS CVE-2013-3526 22 Apr 2013 4.3 (v2) Medium Pass IBM Lotus Domino 8.5.x < 8.5.3 Multiple Vulnerabilities CVE-2011-0914 CVE-2011-0915 CVE-2011-0916 CVE-2011-0917 CVE-2011-0920 CVE-2011-3575 26 Apr 2013 10 (v2) Critical Pass Palo Alto Networks PAN-OS 7.0.x < 7.0.8 Multiple Vulnerabilities (PAN-SA-2016-0008 / PAN-SA-2016-0009)CVE-2016-2219 12 Aug 2016 5.3 (v3) Medium Pass Puppet Unsafe YAML Unserialization CVE-2013-1655 26 Apr 2013 7.5 (v2) High Pass Skype for Windows < 6.3.0.105 Multiple Vulnerabilities (uncredentialed check) 30 May 2013 10 (v2) Critical Pass IBM WebSphere Application Server < 6.1.0.15 Multiple Vulnerabilities CVE-2008-0740 CVE-2008-7274 05 Apr 2010 7.5 (v2) High Pass SolusVM Default Administrator Credentials 24 Jun 2013 7.5 (v2) High Pass Cisco TelePresence TC and TE Software Multiple Vulnerabilities (cisco-sa-20140430-tcte) CVE-2014-2162 CVE-2014-2163 CVE-2014-2164 CVE-2014-2165 CVE-2014-2166 CVE-2014-2167 CVE-2014-2168 CVE-2014-2169 CVE-2014-2170 CVE-2014-2171 CVE-2014-2172 CVE-2014-2173 CVE-2014-217508 May 2014 10 (v2) Critical Pass Cisco Prime Collaboration Provisioning < 12.1 Multiple Vulnerabilities (cisco-sa-20170517-pcp1 - cisco-sa-20170517-pcp3)CVE-2017-6621 CVE-2017-6622 CVE-2017-6635 22 May 2017 9.8 (v3) Critical Pass macOS < 10.12 Multiple Vulnerabilities CVE-2016-0755 CVE-2016-4617 CVE-2016-4658 CVE-2016-4682 CVE-2016-4694 CVE-2016-4696 CVE-2016-4697 CVE-2016-4698 CVE-2016-4699 CVE-2016-4700 CVE-2016-4701 CVE-2016-4702 CVE-2016-4703 CVE-2016-4706 CVE-2016-4707 CVE-2016-4708 CVE-2016-4709 CVE-2016-4710 CVE-2016-4711 CVE-2016-4712 CVE-2016-4713 CVE-2016-4715 CVE-2016-4716 CVE-2016-4717 CVE-2016-4718 CVE-2016-4722 CVE-2016-4723 CVE-2016-4724 CVE-2016-4725 CVE-2016-4726 CVE-2016-4727 CVE-2016-4736 CVE-2016-4738 CVE-2016-4739 CVE-2016-4742 CVE-2016-4745 CVE-2016-4748 CVE-2016-4750 CVE-2016-4752 CVE-2016-4753 CVE-2016-4755 CVE-2016-4771 CVE-2016-4772 CVE-2016-4773 CVE-2016-4774 CVE-2016-4775 CVE-2016-4776 CVE-2016-4777 CVE-2016-4778 CVE-2016-4779 CVE-2016-5131 CVE-2016-5768 CVE-2016-5769 CVE-2016-5770 CVE-2016-5771 CVE-2016-5772 CVE-2016-5773 CVE-2016-6174 CVE-2016-6288 CVE-2016-6289 CVE-2016-6290 CVE-2016-6291 CVE-2016-6292 CVE-2016-6294 CVE-2016-6295 CVE-2016-6296 CVE-2016-6297 CVE-2016-7580 CVE-2016-758223 Sep 2016 9.8 (v3) Critical Pass Apple iTunes < 9.2 Multiple Vulnerabilities (uncredentialed check) CVE-2009-1726 CVE-2010-0544 CVE-2010-1119 CVE-2010-1387 CVE-2010-1390 CVE-2010-1392 CVE-2010-1393 CVE-2010-1395 CVE-2010-1396 CVE-2010-1397 CVE-2010-1398 CVE-2010-1399 CVE-2010-1400 CVE-2010-1401 CVE-2010-1402 CVE-2010-1403 CVE-2010-1404 CVE-2010-1405 CVE-2010-1408 CVE-2010-1409 CVE-2010-1410 CVE-2010-1411 CVE-2010-1412 CVE-2010-1414 CVE-2010-1415 CVE-2010-1416 CVE-2010-1417 CVE-2010-1418 CVE-2010-1419 CVE-2010-1421 CVE-2010-1422 CVE-2010-1749 CVE-2010-1758 CVE-2010-1759 CVE-2010-1761 CVE-2010-1763 CVE-2010-1769 CVE-2010-1770 CVE-2010-1771 CVE-2010-177417 Jun 2010 9.3 (v2) High Pass BackWPup for WordPress Plugin Remote File Inclusion 29 Mar 2011 7.5 (v2) High Pass XMPP Service STARTTLS Plaintext Command Injection 27 May 2011 4 (v2) Medium Pass IBM Tivoli Management Framework Endpoint addr URL Default Credentials 07 Jun 2011 7.5 (v2) High Pass IBM Storwize Authenticated Information Disclosure CVE-2013-6737 03 Jul 2014 4 (v2) Medium Pass Apache 2.2.x < 2.2.8 Multiple Vulnerabilities (XSS, DoS) CVE-2007-5000 CVE-2007-6203 CVE-2007-6388 CVE-2007-6421 CVE-2007-6422 CVE-2008-0005 20 Feb 2008 5.3 (v3) Medium 26

RELAYTO Penetration Test Results - Page 26 RELAYTO Penetration Test Results Page 25 Page 27