Nessus 的 CGI abuses 系列

ID名稱嚴重性
156753Apache Druid Log4Shell Direct Check (CVE-2021-44228)
critical
156558Apache JSPWiki Log4Shell 直接檢查 (CVE-2021-44228)
critical
156546WordPress 5.8 < 5.8.3 / 5.7 < 5.7.5 / 5.6 < 5.6.7 / 5.5 < 5.5.8 / 5.4 < 5.4.9 / 5.3 < 5.3.11 / 5.2 < 5.2.14 / 5.1 < 5.1.12 / 5.0 < 5.0.15 / 4.9 < 4.9.19 / 4.8 < 4.8.18 / 4.7 < 4.7.22 / 4.6 < 4.6.22 / 4.5 < 4.5.25 / 4.4 < 4.4.26 / 4.3 < 4.3.27 / 4.2 < 4.2.31 / 4.1 < 4.1.34 / 4.0 < 4.0.34 / 3.9 < 3.9.35 / 3.8 < 3.8.37 / 3.7 < 3.7.37
high
156473Apache OFBiz Log4Shell 直接檢查 (CVE-2021-44228)
critical
156471Apache Solr Log4Shell 直接檢查 (CVE-2021-44228)
critical
156443JQuery UI < 1.13.0 多個 XSS
medium
156439JQuery UI 偵測
info
156208SolarWinds Orion Platform 2020.2.6 < 2020.2.6 HF3 SQLI
high
156016透過路徑列舉進行的 Apache Log4Shell RCE 偵測 (直接檢查 HTTP)
critical
155961SonicWall Secure Mobile Access 多個弱點 (SNWLID-2021-0026)
high
155864ManageEngine ServiceDesk Plus < 11306 11.3 版/ManageEngine ServiceDesk Plus MSP < 10530 RCE 10.5 版
critical
155841Jenkins Enterprise and Operations Center < 2.222.43.0.2 / 2.249.30.0.2 / 2.263.2.3 Arbitrary File Read (CloudBees Security Advisory 2021-01-26)
medium
155735Jenkins Plugins Multiple Vulnerabilities (Jenkins Security Advisory 2021-03-30)
high
155731Liferay Portal 7.3.2 < 7.3.6 XSS
medium
155730PHP 8.1.x < 8.1.0 Multiple Vulnerabilities
high
155717ManageEngine ADAudit Plus Detection
info
155716ManageEngine ADAudit Plus < Build 7006 File Upload RCE
critical
155715Jenkins Enterprise and Operations Center < 2.222.43.0.1 / 2.249.30.0.1 / 2.263.2.2 Multiple Vulnerabilities (CloudBees Security Advisory 2021-01-13)
high
155678Liferay Portal 6.2.x < 6.2.5 / 7.0.x < 7.0.6 / 7.1.x < 7.1.3 / 7.2.x < 7.2.1 RCE
critical
155661Jenkins Enterprise and Operations Center < 2.249.33.0.1 / 2.277.42.0.1 / 2.303.2.5 Multiple Vulnerabilities (CloudBees Security Advisory 2021-10-06)
medium
155625PHP 8.0.x < 8.0.13
medium
155590PHP 7.3.x < 7.3.33
medium
155589PHP 7.4.x < 7.4.26
medium
155559Drupal 8.9.x < 8.9.20 / 9.1.x < 9.1.14 / 9.2.x < 9.2.9 Multiple Vulnerabilities (drupal-2021-11-17)
medium
155443SolarWinds Orion Platform 2020.2.0 < 2020.2.6 HF1 多個弱點 XSS
high
155442SolarWinds Orion Platform 2020.2.0 < 2020.2.6 多個弱點
high
155441SolarWinds Orion Platform 2019.2 HF4 / 2019.4.2 / 2020.2.5 HF1 / 2020.2.6 / 2020.2.6 SQLI
high
155305D-Link DIR-825 R1 Device < 3.0.2 RCE (CVE-2020-29557)
critical
155026WordPress 5.8 < 5.8.2 / 5.7 < 5.7.4 / 5.6 < 5.6.6 / 5.5 < 5.5.7 / 5.4 < 5.4.8 / 5.3 < 5.3.10 / 5.2 < 5.2.13
high
154981Buffalo 路由器路徑遊走 (CVE-2021-20090)
critical
154965Jenkins Enterprise and Operations Center < 2.249.31.0.4/2.277.4.3 多個弱點 (CloudBees 安全性公告 2021-05-11)
high
154964ManageEngine ADSelfServicePlus 驗證繞過 (CVE-2021-40539)
critical
154935Nagios XI < 5.6.6 RCE
high
154933Accellion File Transfer Appliance < 9_12_416 Multiple Vulnerabilities
critical
154894Jenkins LTS < 2.303.3 / Jenkins weekly < 2.319 Multiple Vulnerabilities
critical
154879GitLab 7.12.x < 13.8.8 / 13.9.x < 13.9.6/13.10.x < 13.10.3 RCE
critical
154728DNN (DotNetNuke) 9.2 <= 9.2.2 弱式加密演算法弱點
high
154663PHP 7.3.x < 7.3.32
high
154656PHP 7.4.x < 7.4.24 任意檔案寫入
medium
154650PHP 7.3.x < 7.3.31 任意檔案寫入
medium
154349PHP 7.4.x < 7.4.25
high
154339SolarWinds Orion Platform < 2020.2.6 HF1 多個弱點
high
154297Oracle Primavera Gateway (2021 年 10 月 CPU)
high
154296PHP 8.0.x < 8.0.12
high
154267Oracle MySQL Enterprise Monitor (2021 年 10 月 CPU)
high
154262Oracle Primavera Unifier (2021 年 10 月 CPU)
high
154244Atlassian Confluence 任意檔案讀取 (CVE-2021-26085)
medium
154144Adobe Connect < 11.2.3 多個弱點 (ASPB21-91)
critical
153981Jenkins Enterprise and Operations Center < 2.249.32.0.1 / 2.277.41.0.1 / 2.303.1.5 Bad Permissions (CloudBees Security Advisory 2021-08-25)
low
153978Jenkins Enterprise and Operations Center < 2.289.3.2 rev 2 Bad Permissions (CloudBees Security Advisory 2021-08-02)
low