偵測

Nessus 的 CGI abuses 系列

ID名稱嚴重性
298825GitLab 18.6 < 18.6.3 / 18.7 < 18.7.1 (CVE-2025-13761)
critical
298824GitLab 16.9 <18.3.6/18.4 < 18.4.4/18.5 < 18.5.2 (CVE-2025-12983)
medium
298823GitLab 13.2 <18.4.5/18.5 < 18.5.3/18.6 < 18.6.1 (CVE-2025-13611)
medium
298822GitLab 18.3 <18.4.5/18.5 < 18.5.3/18.6 < 18.6.1 (CVE-2025-12653)
medium
298821GitLab 17.10 <18.4.5/18.5 < 18.5.3/18.6 < 18.6.1 (CVE-2025-12571)
high
298770Roundcube Webmail 1.5.x < 1.5.13 / 1.6.x < 1.6.13 多個弱點
medium
298511BeyondTrust Privileged Remote Access (PRA) <= 24.3.4 預先驗證 RCE (BT26-02)
critical
298510BeyondTrust Remote Support (RS) < 25.3.2 預先驗證 RCE (BT26-02)
critical
298255Atlassian Confluence 7.19 < 8.5.31 / 8.6.x < 9.2.13 / 9.3.x < 10.2.2 (CONFSERVER-101872)
critical
298241SmarterMail < 100.0.9511 透過 ConnectToHub API 造成未經驗證的 RCE (CVE-2026-24423)
critical
298175Atlassian Confluence 7.7.x < 8.5.31 / 8.6.x < 9.2.13 / 9.3.1 < 10.2.2 (CONFSERVER-101878)
critical
298174Atlassian Confluence 7.13 < 9.2.11 / 9.3.1 < 10.1.0 (CONFSERVER-101827)
high
298043Atlassian Confluence 9.2.8 < 9.2.11 (CONFSERVER-101842)
medium
298040FreePBX 13.x < 13.0.197.14 / 14.x < 14.0.13.12 / 15.x < 15.0.16.27 遠端系統管理員驗證繞過
critical
298039FreePBX 17.0.2.36 < 17.0.3 命令插入 (GHSA-vm9p-46mv-5xvw)
high
297849ManageEngine OpManager 已儲存 XSS 在子網路詳細資料 (CVE-2025-9226)
medium
297831Dotnetnuke 9.0.x < 9.13.10 / 10.0.x < 10.2.0 在模組刪除確認模態中的已儲存 XSS (CVE-2026-24837)
medium
297830Dotnetnuke 9.0.x < 9.13.10 / 10.0.x < 10.02.00 模組的頁首和頁尾中的潛在 XSS 弱點 (CVE-2026-24784)
medium
297829Dotnetnuke < 9.13.10 / 10.0.x < 10.02.00 模組描述中的已儲存 XSS (CVE-2026-24833)
medium
297828Dotnetnuke 9.0.x < 9.13.10 / 10.0.x < 10.02.00 在排程器 LogNotes 中儲存的 XSS (CVE-2026-24836)
medium
297827Dotnetnuke < 9.13.10 / 10.0.x < 10.02.00 透過模組標題的已儲存 XSS (CVE-2026-24838)
medium
297224SmarterMail < 100.0.9511 驗證繞過 (CVE-2026-23760)
critical
297222SmarterMail < 100.0.9413 不受限制檔案上傳遠端程式碼執行 (CVE-2025-52691)
critical
297134Zimbra Collaboration Server 10.0.x < 10.0.18、10.1.x < 10.1.13 本機檔案包含弱點
high
297129Splunk Enterprise 9.2.0 < 9.2.12、9.3.0 < 9.3.9、9.4.0 < 9.4.8、10.0.0 < 10.0.3 (SVD-2026-0101)
high
296366Oracle Primavera Gateway (2026 年 1 月 CPU)
medium
295029Oracle Primavera Unifier (2026 年 1 月 CPU)
critical
294995Oracle Primavera P6 Enterprise Project Portfolio Management (2026 年 1 月 CPU)
medium
292785Atlassian Confluence 9.0.1 < 9.2.1 / 9.3.x < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101575)
high
292784Atlassian Confluence 9.0.1 < 9.2.1 / 9.3.x < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101573)
high
286274Kibana 7.x / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_08)
medium
286273Kibana 7.10.x < 7.17.30 / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_04)
medium
286272Kibana 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_05)
high
286271Kibana 7.10.x < 7.17.30 / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_03)
medium
286265ServiceNow Platform Jelly 範本插入 (CVE-2024-4879)
critical
283727Atlassian Confluence 9.0.1 < 9.2.1 / 9.3.1 < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101574)
critical
282639Atlassian Confluence 7.19.0 < 8.5.10 / 8.6.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101478)
high
282638Atlassian Confluence 7.19.0 < 8.5.20 / 8.6.x < 9.2.6 / 9.3.x < 9.3.1 / 9.4.0 ] / 9.5.x < 9.5.2 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101489)
high
282478MongoDB 未驗證未初始化堆積記憶體洩漏 (MongoBleed) (CVE-2025-14847) (直接檢查)
high
282475Libraesva ESG 4.5 < 5.0.31 / 5.1.20 / 5.2.31 / 5.3.16 / 5.4.8 / 5.5.7 命令插入 (CVE-2025-59689)
medium
282455Smartbedded Meteobridge < 6.2 RCE (CVE-2025-4008)
high
282328Atlassian Confluence < 8.5.31 / 8.6.x < 9.2.13 / 9.3.x < 10.2.2 (CONFSERVER-101788)
critical
282325Atlassian Confluence < 8.5.10 / 9.2.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101477)
high
282324Atlassian Confluence < 8.5.17 / 8.6.x < 9.2.6 / 9.3.1 < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101480)
high
282323Atlassian Confluence < 8.5.10 / 8.6.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101479)
high
282322Atlassian Confluence 10.1.x< 10.1.1 (CONFSERVER-101485)
high
282321Atlassian Confluence < 9.2.6 / 9.3.x < 9.4.0 / < 9.4.0 / 9.5.x < 9.5.2 / 10.0.x < 10.0.2 / 10.1.0 (CONFSERVER-101488)
critical
282316HPE OneView RCE (CVE-2025-37164)
critical
281853Joomla 3.9.x < 5.4.2 / 6.0.x < 6.0.2 Joomla 6.0.2 和 5.4.2 安全性和錯誤修正版本 (5942-joomla-6-0-2-and-5-4-2-security-bugfix-release)
high
281846Atlassian Confluence < 8.5.18 / 8.6.x < 9.2.1 / 9.3.x < 9.3.1 / 9.4.x < 9.5.4 / 10.0.x < 10.0.2 / 10.1.0 (CONFSERVER-101486)
high