Nessus 的 CGI abuses 系列

ID名稱嚴重性
168361ManageEngine ServiceDesk Plus < 14.0 Build 14001 Multiple Vulnerabilities
medium
168360ManageEngine AssetExplorer < 6.9 Build 6981 Privilege Escalation
medium
168359ManageEngine ServiceDesk Plus < 13.0 Build 13011 RCE
high
168358ManageEngine SupportCenter Plus < 11.0 Build 11026 Multiple Vulnerabilities
high
168357ManageEngine AssetExplorer 6.9 Build 6980 XXE
medium
168356ManageEngine ServiceDesk Plus MSP < 10.6 Build 10609 Privilege Escalation
medium
168355ManageEngine ServiceDesk Plus MSP < 13.0 Build 13000 RCE
high
168354ManageEngine SupportCenter Plus < 11.0 Build 11025 Privilege Escalation
medium
168353ManageEngine ServiceDesk Plus MSP < 13.0 Build 13001 XXE
medium
168352Mattermost Server < 7.4.0 DoS (MMSA-2022-00124)
medium
168351Mattermost Server < 7.1.4 / 7.2.x < 7.2.1 / 7.3.x < 7.3.1 DoS (MMSA-2022-00120)
medium
168350Mattermost Server < 7.1.4 / 7.2.x < 7.2.1 / 7.3.x < 7.3.1 DoS (MMSA-2022-00118)
medium
168325Atlassian Crowd 3.x / 4.x < 4.4.4 / 5.x < 5.0.3 安全性繞過 (CWD-5888)
critical
168269Zimbra Collaboration Server 8.8.x < 8.8.15 修補程式 35 / 9.0.0 < 9.0.0 修補程式 28 多個弱點
high
168019GitLab < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 DoS
medium
167867WordPress Plugin 'Advanced Custom Fields' < 5.12.4, 6.x < 6.0.3 Custom Field Value Exposure
low
167634Jenkins Enterprise 與 Operations Center 2.346.x < 2.346.40.0.6 / 2.361.3.4 多個弱點 (CloudBees 安全公告 2022-11-15)
critical
167615VMware Workspace One Assist 多個弱點 (VMSA-2022-0028)
critical
167509Dell EMC iDRAC9 < 6.00.30.00 (DSA-2022-265)
high
167508Dell EMC iDRAC8 < 2.84.84.84 (DSA-2022-265)
high
167261GitLab 14.4 < 15.3.5/15.4 < 15.4.4/15.5 < 15.5.2 不當授權
medium
167195Citrix ADC and Citrix Gateway 12.1.x < 12.1-65.21 / 13.0.x < 13.0-88.12 / 13.1.x < 13.1-33.47 多個弱點 (CTX463706)
critical
167098Joomla 4.0.x < 4.2.5 Joomla 4.2.5 安全性和錯誤修正版本 (5873-joomla-4-2-5-security-and-bug-fix-release)
medium
167072GitLab 14.5 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 資訊洩漏
medium
167071GitLab 7.14 < 15.3.5/15.4 < 15.4.4/15.5 < 15.5.2 不當授權
medium
167070GitLab 15.0 < 15.3.5/15.4 < 15.4.4/15.5 < 15.5.2 不當授權
medium
167069GitLab 9.3 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 開放式重新導向
medium
167068GitLab 12.6 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 XSRF
critical
167048GitLab 12.1 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 資訊洩漏
medium
166969GitLab < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 未經授權的命令執行
medium
166966D-Link Routers RCE (CVE-2020-25506)
critical
166964Metabase SSRF (CVE-2022-39359)
medium
166963GitLab 10.1 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 開放式重新導向
medium
166962GitLab 14.4 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 資訊洩漏
medium
166961ManageEngine OpManager SQLi (CVE-2022-27908)
high
166933Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1112)
medium
166932Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1108)
medium
166931Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9 (SVD-2022-1105)
high
166930Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1106)
high
166926Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9 (SVD-2022-1103)
high
166925Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1101)
medium
166924Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1107)
high
166923Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1102)
medium
166922Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1110)
medium
166921Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1111)
high
166920Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1109)
medium
166919Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9 (SVD-2022-1104)
medium
166901PHP 7.4.x < 7.4.33 多個弱點
critical
166891D-Link 路由器 RCE (CVE-2021-45382)
critical
166889D-Link Routers Unauthenticated RCE (CVE-2019-16920)
critical