偵測

Nessus 的 CGI abuses 系列

ID名稱嚴重性
176686GitLab 15.7 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-1825)
medium
176685GitLab 1.2 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2013)
medium
176684GitLab 12.0 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2199)
high
176679GitLab 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2442)
medium
176633CKAN < 2.9.9 / 2.10.1 RCE
critical
176630TererraMaster TOS < 4.2.30 命令插入 (CVE-2022-24990)
high
176566Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0604)
medium
176560Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0612)
medium
176559Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0603)
high
176558Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0611)
medium
176557Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0605)
medium
176556Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0609)
medium
176555Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0606)
low
176554Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0601)
medium
176553Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0602)
high
176486Joomla 4.2.x < 4.3.2 多個弱點 (5887-joomla-4-3-2-security-and-bug-fix-release)
high
176463Liferay Portal
medium
176454Atlassian Confluence < 7.19.9 (CONFSERVER-83218)
medium
176453Liferay Portal 7.4.3.4 < 7.4.3.49 驗證繞過
medium
176452Liferay Portal 7.3.1 <= 7.3.7 / 7.4.0 < 7.4.3.18 SQL 注入攻擊
high
176450Liferay Portal
high
176448Liferay Portal 7.4.3.48 < 7.4.3.77 REDoS
high
176446Liferay Portal 7.4.3.21 <= 7.4.3.62 XSS
medium
176415Spring Cloud Gateway 程式碼插入 (CVE-2022-22947)
critical
176413Liferay Portal 7.4.3.41 <= 7.4.3.52 反映式 XSS
medium
176409Liferay Portal 7.0.0 <= 7.0.6 / 7.1.0 <= 7.1.3 / 7.2.0 <= 7.2.1 / 7.3.0 < 7.3.1 驗證不足
high
176401PaperCut MF 安全性請求篩選驗證繞過 (CVE-2023-27351)
high
176383Liferay Portal 7.1.0 - 7.1.3、7.2.0 - 7.2.1、7.3.0 - 7.3.7、7.4.0 - 7.4.3.12 XSS
medium
176379FatPipe MPVPN < 10.1.2r60p92 / 10.2.2 < 10.2.2r44p1 組態檔案上傳 (CVE-2021-27860)
high
176378FatPipe MPVPN < 10.1.2r60p91 / 10.2.2 < 10.2.2r42 多個弱點
critical
176251GitLab < 16.0.1 (CVE-2023-2825)
high
176211NoviSurvey 不安全還原序列化弱點 (CVE-2023-29492)
critical
176143WordPress 6.0 < 6.2.2
high
176109GitLab < 15.9.8 (CVE-2023-2181)
medium
176075Sophos Web Appliance 預先驗證命令插入 (CVE-2023-1671)
critical
176037PaperCut MF 偵測
info
176036PaperCut MF 驗證繞過 (CVE-2023-27350)
critical
175909WordPress 6.0 < 6.2.1
high
175835Jenkins Enterprise 和 Operations Center 2.346.x < 2.346.40.0.17 多個弱點 (CloudBees 安全公告 2023-05-16)
high
175782F5 Networks BIG-IQ iControl REST 任意檔案上傳 (K000132719)
medium
175674PaperCut NG 安全性請求篩選驗證繞過 (CVE-2023-27351)
high
175429IBM Cognos Analytics 多個弱點 (6986505)
critical
175414Elastic Kibana < 8.7.1 任意程式碼執行
high
175390Citrix ADC 和 Citrix Gateway 多個弱點 (CTX477714)
high
175389ManageEngine ADManager Plus <= Build 7005 RCE (已過時)
critical
175388Mattermost Server < 7.1.6/7.2.x < 7.7.2 資訊洩漏 (MMSA-2023-00138)
medium
175141GitLab 15.4 < 15.9.7 / 15.10 < 15.10.6 / 15.11 < 15.11.2 (CVE-2023-2478)
medium
175101ManageEngine ServiceDesk Plus < 14.1 Build 14105 XXE
medium
175100ManageEngine SupportCenter Plus < 14.2 Build 14200 XXE
medium
175099ManageEngine AssetExplorer < 6.9 Build 6989 XXE
medium