Nessus 的 CGI abuses 系列

ID名稱嚴重性
176696GitLab 8.7 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2198)
high
176695GitLab 15.4 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2132)
high
176694GitLab 12.0 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2589)
medium
176693GitLab 13.2.4 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-0121)
medium
176692GitLab 10.1 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-1204)
medium
176691GitLab 15.8 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2015)
medium
176690GitLab 15.4 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-0508)
high
176689GitLab 14.1 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2485)
high
176688GitLab 0.0 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2001)
medium
176687GitLab 8.3 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-0921)
medium
176686GitLab 15.7 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-1825)
medium
176685GitLab 1.2 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2013)
high
176684GitLab 12.0 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2199)
high
176679GitLab 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2442)
medium
176633CKAN < 2.9.9 / 2.10.1 RCE
critical
176630TererraMaster TOS < 4.2.30 命令插入 (CVE-2022-24990)
high
176566Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0604)
medium
176560Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0612)
medium
176559Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0603)
high
176558Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0611)
high
176557Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0605)
medium
176556Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0609)
high
176555Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0606)
high
176554Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0601)
high
176553Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0602)
high
176486Joomla 4.2.x < 4.3.2 多個弱點 (5887-joomla-4-3-2-security-and-bug-fix-release)
high
176463Liferay Portal
medium
176454Atlassian Confluence < 7.19.9 (CONFSERVER-83218)
medium
176453Liferay Portal 7.4.3.4 < 7.4.3.49 驗證繞過
medium
176452Liferay Portal 7.3.1 <= 7.3.7 / 7.4.0 < 7.4.3.18 SQL 注入攻擊
high
176450Liferay Portal
high
176448Liferay Portal 7.4.3.48 < 7.4.3.77 REDoS
high
176446Liferay Portal 7.4.3.21 <= 7.4.3.62 XSS
medium
176415Spring Cloud Gateway 程式碼插入 (CVE-2022-22947)
critical
176413Liferay Portal 7.4.3.41 <= 7.4.3.52 反映式 XSS
medium
176409Liferay Portal 7.0.0 <= 7.0.6 / 7.1.0 <= 7.1.3 / 7.2.0 <= 7.2.1 / 7.3.0 < 7.3.1 驗證不足
high
176401PaperCut MF 安全性請求篩選驗證繞過 (CVE-2023-27351)
high
176383Liferay Portal 7.1.0 - 7.1.3、7.2.0 - 7.2.1、7.3.0 - 7.3.7、7.4.0 - 7.4.3.12 XSS
medium
176379FatPipe MPVPN < 10.1.2r60p92 / 10.2.2 < 10.2.2r44p1 組態檔案上傳 (CVE-2021-27860)
high
176378FatPipe MPVPN < 10.1.2r60p91 / 10.2.2 < 10.2.2r42 多個弱點
critical
176251GitLab 16.0.0 < 16.0.1 (CVE-2023-2825)
high
176211NoviSurvey 不安全還原序列化弱點 (CVE-2023-29492)
critical
176143WordPress None < 6.2.2
high
176109GitLab 0.0 < 15.9.8 / 15.10.0 < 15.10.7 / 15.11.0 < 15.11.3 (CVE-2023-2181)
medium
176075Sophos Web Appliance 預先驗證命令插入 (CVE-2023-1671)
critical
176037PaperCut MF 偵測
info
176036PaperCut MF 驗證繞過 (CVE-2023-27350)
critical
175909WordPress None < 6.2.1
high
175835Jenkins Enterprise 和 Operations Center 2.346.x < 2.346.40.0.17 多個弱點 (CloudBees 安全公告 2023-05-16)
critical
175782F5 Networks BIG-IQ iControl REST 任意檔案上傳 (K000132719)
medium