Nessus 的 CGI abuses 系列

ID名稱嚴重性
148307ManageEngine OpManager Smart Update Manager RCE
high
148265Atlassian Jira < 8.13.3 / 8.14.x < 8.14.1 無效的身分驗證 (JRASERVER-72029)
medium
148180SolarWinds Orion Platform < 2020.2.5 多個弱點
high
147923HPE Systems Insight Manager RCE (CVE-2020-7200)
high
147705Joomla 1.6.x < 3.9.25 多個弱點 (5834-joomla-3-9-25)
medium
147020PRTG Network Monitor < 20.1.57.1745 資訊洩漏 (直接檢查)
medium
146935Citrix ADC 和 Citrix NetScaler Gateway 反射式程式碼插入 (CTX276688) (直接檢查)
medium
146928SolarWinds Orion Web Performance Monitor (WPM) 遠端偵測
info
146927Accellion File Transfer Appliance 不受支援的版本
critical
146869Atlassian Confluence < 6.13.18 / 6.14 < 7.4.6 / 7.5 < 7.8.3 任意檔案讀取 (CONFSERVER-60469)
medium
146824Atlassian Jira < 8.5.11 / 8.13.3 / 8.15.0 任意檔案讀取 (JRASERVER-72014)
medium
146806HPE Edgeline Infrastructure Manager 驗證繞過
critical
146593Atlassian JIRA < 8.13.2 / 8.14.x < 8.14.1 資訊洩漏 (JRASERVER-71950)
medium
146592Atlassian JIRA < 8.5.11 / 8.6.x < 8.13.3 / 8.14.x < 8.14.1 資訊洩漏 (JRASERVER-72000)
medium
146495Webmin < 1.970 多個弱點
high
146311PHP 7.3.x < 7.3.27 / 7.4.x < 7.4.15 / 8.x < 8.0.2 DoS
medium
146310SolarWinds Orion Platform < 2020.2.4 多個弱點
critical
146309SolarWinds Orion Platform < 2019.4.2 遠端程式碼執行
critical
146103Atlassian JIRA < 8.5.10 / 8.6.x < 8.13.2 資訊洩漏 (JRASERVER-72002)
medium
146091SonicWall Secure Mobile Access 遠端程式碼執行 (SNWLID-2021-0001)
high
146088SonicWall Secure Mobile Access (SMA) Web 偵測
info
146087Apache ActiveMQ 5.x < 5.15.14 / 5.16.x < 5.16.1 驗證繞過 (CVE-2021-26117)
medium
145569Oracle Primavera Unifier (2021 年 1 月 CPU)
high
145538Oracle MySQL Enterprise Monitor 多個弱點 (2021 年 1 月 CPU)
high
145533Jenkins < 2.263.3 LTS / 2.276 TOCTOU
low
145248Jenkins < 2.263.2 LTS / 2.275 多個弱點
medium
145245Oracle Primavera P6 Enterprise Project Portfolio Management (2021 年 1 月 CPU)
low
145223Oracle Primavera Gateway (2021 年 1 月 CPU)
medium
144980Joomla 3.0.x < 3.9.24 多個弱點 (5830-joomla-3-9-24)
medium
144947PHP 7.3.x < 7.3.26 / 7.4.x < 7.4.14 / 8.x < 8.0.1 輸入驗證錯誤
medium
144793ManageEngine Applications Manager REST API SQLi
high
144756Dell iDRAC XSS (DSA-2020-268)
medium
144649phpMyAdmin 4.9.0 < 4.9.6 / 5.0.0 < 5.0.3 多個弱點 (PMASA-2020-5、PMASA-2020-6)
high
144646phpMyAdmin 4.9.0 < 4.9.5 / 5.0.0 < 5.0.2 多個弱點 (PMASA-2020-2、PMASA-2020-3、PMASA-2020-4)
medium
144644phpMyAdmin 4.4.0 < 4.4.15.1 / 4.5.0 < 4.5.1 內容偽造 (PMASA-2015-5)
medium
144641phpMyAdmin 4.0.0 < 4.0.10.12 / 4.4.0 < 4.4.15.2 / 4.5.0 < 4.5.3.1 資訊洩漏 (PMASA-2015-6)
medium
144622SolarWinds Orion Platform < 2019.4 HF6 / 2020.2 < 2020.2.1 HF2 驗證繞過 (SUPERNOVA)
high
144366SolarWinds Orion Platform < 2020.2.1 XSS
medium
144365Apache Struts 2.x < 2.5.26 RCE (S2-061) (直接檢查)
high
144198SolarWinds Orion Platform 2019.4 HF5 / 2020.2.x < 2020.2.1 SUNBURST 惡意軟體後門程式
high
143600ManageEngine ServiceDesk Plus < 10.0 版本 10012 任意檔案上傳
medium
143574VMware Workspace One Access / VMware Identity Manager 命令插入弱點 (VMSA-2020-0027)
high
143532phpMyAdmin 4.0.x < 4.0.10.18 / 4.4.x < 4.4.15.9 / 4.6.x < 4.6.5 多個弱點
high
143489phpMyAdmin 4.0.x < 4.0.10.15 / 4.4.x < 4.4.15.5 / 4.5.x < 4.5.5.1 多個弱點
medium
143449PHP 7.3.x < 7.3.25 / 7.4.x < 7.4.13 多個弱點
medium
143422EMC RSA Archer 6.8 < 6.8.0.4 / 6.9 < 6.9.0.1 URL 插入
medium
143380Joomla 1.7.x < 3.9.23 多個弱點 (5828-joomla-3-9-23)
high
143282phpMyAdmin 4.0.0 < 4.0.10.17 / 4.4.0 < 4.4.15.8 / 4.6.0 < 4.6.4 多個弱點
critical
143274Drupal 7.x < 7.75 / 8.x < 8.8.12 / 8.9.x < 8.9.10 / 9.0.x < 9.0.9 多個弱點 (SA-CORE-2020-013)
medium
143273phpMyAdmin 4.0.x < 4.0.10.10 / 4.2.x < 4.2.13.3 / 4.3.x < 4.3.13.1 / 4.4.x < 4.4.6.1 多個弱點 (PMASA-2015-2、PMASA-2015-3)
medium