检测

CrushFTP < 11.3.1 身份验证绕过 (CVE-2025-31161) (直接检查)

critical Nessus 插件 ID 233965

语言:

版本 1.4

Sep 30, 2025, 12:41 AM

  • Logic Changes (Add extra checks to see whether plugins should run. Modernisation of the HTTP/1 library. Various corrections and fixes for CPE related Flatline Test Failures. Remove spurious authentication header.)

Plugin Feed: 202509300041

版本 1.3

Jul 15, 2025, 2:39 AM

  • Logic Changes

Plugin Feed: 202507150239

版本 1.2

Apr 8, 2025, 2:17 PM

  • CISA reference
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploitability ease" set to "Exploits are available")

Plugin Feed: 202504081417

版本 1.1

Apr 7, 2025, 9:51 PM

  • New

Plugin Feed: 202504072151

* Changelogs are generally available for changes made after Nov 1, 2022