偵測

Plugin

Nessus 的 CGI abuses 系列

ID	名稱	嚴重性
265721	Dotnetnuke < 10.1.0 已儲存跨網站指令碼 (XSS) 在 Prompt 模組中 (GHSA-2qxc-mf4x-wr29)	high
265720	Dotnetnuke < 10.1.0 使用後端系統管理員認證的已儲存 XSS (GHSA-gj8m-5492-q98h)	high
265718	Dotnetnuke < 10.1.0 使用 url 來設定檔發生反射式跨網站指令碼 (XSS) (GHSA-jc4g-c8ww-5738)	high
265441	Atlassian Confluence 2.0 < 8.5.24 / 8.6.x < 9.2.6 / 9.3.x < 9.5.2 / 10.0.x < 10.0.3 RCE (CONFSERVER-100795)	high
265438	Fortra GoAnywhere Managed File Transfer (MFT) < 7.6.3 / 7.7.x < 7.8.4 還原序列化 (CVE-2025-10035)	critical
265328	Openfire < 5.0.2 / 5.1.0 身分偽造	medium
265325	Jenkins LTS < 2.516.3/Jenkins 每週版 < 2.528 多個弱點	high
264901	Mattermost 伺服器 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.4 / 10.10.x < 10.10.1 / 10.11.0 路徑遊走 (MMSA-2025-00501)	medium
264900	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.4 / 10.10.x < 10.10.1 / 10.11.0 不當驗證 (MMSA-2025-00506)	medium
264899	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.3 / 10.10.0 多個弱點 (MMSA-2025-00498, MMSA-2025-00499)	medium
264626	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.3 / 10.10.x < 10.10.1 / 10.11.0 不受限制的檔案上傳 (MMSA-2025-00505)	medium
264625	Mattermost Server 10.5.x < 10.5.9 / 10.10.0 不正確的授權 (MMSA-2025-00470)	medium
264624	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.10.0 授權錯誤 (MMSA-2025-00485)	low
264600	GitLab 10.7 <18.1.6/18.2 < 18.2.6/18.3 < 18.3.2 (CVE-2025-10094)	medium
264599	GitLab 7.8 <18.1.6/18.2 < 18.2.6/18.3 < 18.3.2 (CVE-2025-7337)	medium
264598	GitLab 15.1 <18.1.6/18.2 < 18.2.6/18.3 < 18.3.2 (CVE-2025-6769)	medium
264597	GitLab 15.0 <18.1.6/18.2 < 18.2.6/18.3 < 18.3.2 (CVE-2025-1250)	medium
264596	GitLab 7.12 <18.1.6/18.2 < 18.2.6/18.3 < 18.3.2 (CVE-2025-2256)	high
264595	GitLab 16.11 <18.1.6/18.2 < 18.2.6/18.3 < 18.3.2 (CVE-2025-6454)	high
261788	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-020)	medium
261786	TYPO3 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-018)	medium
261784	TYPO3 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-023)	medium
261780	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-022)	high
261779	TYPO3 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-019)	medium
261778	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-021)	medium
261777	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-017)	medium
261775	Metabase 0.41.x < 0.41.7 / 0.42.x < 0.42.4 / 1.41.x < 1.41.7 / 1.42.x 1.42.4	high
261774	Metabase 0.41.x < 0.41.9 / 0.42.x < 0.42.6 / 0.43.x < 0.43.7 / 0.44.x < 0.44.5 / 1.41.x < 1.41.9 / [ 1.42.x < [ 1.42.6 / [ 1.43.x < 1.43.7 / 1.44.x 1.44.5	medium
261773	Metabase 0.43.x < 0.43.7.1 / 0.44.x < 0.44.6.1 / 0.45.x0.45.2.1 < / 1.43.x < 1.43.7.1 / 1.44.x < 1.44.6.1 / 1.45.x 1.45.2.1	medium
261772	Metabase < 0.29.3 XSS	medium
261771	Metabase 0.44.5	medium
261770	Metabase 0.43.x < 0.43.7.3 / 0.44.x < 0.44.7.3 /0.45.x < 0.45.4.3 / 0.46.x < 0.46.6.4 / 1.43.x < 1.43.7.3 / 1.44.x < 1.44.7.3 / 1.45.x < 1.45.4.3 / 1.46.x < 1.46.6.4	critical
261769	Metabase 0.42.x < 0.42.6 / 0.43.x < 0.43.7 / 0.44.x0.44.5 < / 1.42.x < 1.42.6 / 1.43.x < 1.43.7 / 1.44.x 1.44.5	medium
261768	Metabase 0.44.x < 0.44.7 / 0.45.x < 0.45.4 / 0.46.x0.46.3 < / 1.44.x < 1.44.7 / 1.45.x < 1.45.4 / 1.46.x 1.46.3	critical
261767	Metabase 0.41.x < 0.41.7 / 0.42.x < 0.42.4 / 1.40.x < 1.40.8 / 1.41.x < 1.41.7 / 1.42.x 1.42.4	medium
261766	Metabase 0.41.x < 0.41.9 / 0.42.x < 0.42.6 / 0.43.x < 0.43.7 / 0.44.x < 0.44.5 / 1.41.x < 1.41.9 / [ 1.42.x < [ 1.42.6 / [ 1.43.x < 1.43.7 / 1.44.x 1.44.5	high
261765	Metabase 1.40.5	high
261764	Metabase 0.40.x < 0.40.8 / 0.41.x < 0.41.7 / 0.42.x0.42.4 < / 1.40.x < 1.40.8 / 1.41.x < 1.41.7 / 1.42.x 1.42.4	medium
261763	中繼資料庫 1.52.x 1.52.2.5	high
261502	ManageEngine ServiceDesk Plus < 15.1 Build 15110 權限提升	high
261501	ManageEngine ServiceDesk Plus MSP < 14.9 Build 14940 權限提升	high
261484	Sitecore XP 不安全的還原序列化 (SC2025-005)	critical
261465	Kibana 9.0.x < 9.0.6 / 9.1.x < 9.1.3 不正確的授權 (ESA-2025-13)	medium
261154	Jenkins 外掛程式多個弱點 (2025-09-03)	medium
258075	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.2 / 10.10.0 (MMSA-2025-00500)	medium
258046	GitLab < 18.1.5 / 18.2 < 18.2.5 / 18.3 < 18.3.1 (CVE-2025-2246)	medium
258045	GitLab 8.15 <18.1.5/18.2 < 18.2.5/18.3 < 18.3.1 (CVE-2025-3601)	medium
258044	GitLab 14.1 <18.1.5/18.2 < 18.2.5/18.3 < 18.3.1 (CVE-2025-4225)	medium
258043	GitLab < 18.1.5 / 18.2 < 18.2.5 / 18.3 < 18.3.1 (CVE-2025-5101)	medium
255232	NetScaler ADC 和 NetScaler Gateway 多個弱點 (CTX694938)	critical

偵測

Nessus 的 CGI abuses 系列

high

high

high

high

critical

medium

high

medium

medium

medium

medium

medium

low

medium

medium

medium

medium

high

high

medium

medium

medium

high

medium

medium

medium

high

medium

medium

medium

medium

critical

medium

critical

medium

high

high

medium

high

high

high

critical

medium

medium

medium

medium

medium

medium

medium

critical