检测

Nessus 的 CGI abuses 系列

ID名称严重性
176633CKAN < 2.9.9 / 2.10.1 RCE
critical
176630TerraMaster TOS < 4.2.30 命令注入 (CVE-2022-24990)
high
176566Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0604)
medium
176560Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0612)
medium
176559Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0603)
high
176558Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0611)
medium
176557Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0605)
medium
176556Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0609)
medium
176555Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0606)
low
176554Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0601)
medium
176553Splunk Enterprise 8.1.0 < 8.1.14、8.2.0 < 8.2.11、9.0.0 < 9.0.5 (SVD-2023-0602)
high
176486Joomla 4.2.x < 4.3.2 多个漏洞 (5887-joomla-4-3-2-security-and-bug-fix-release)
high
176463Liferay Portal 7.4.3.4 < 7.4.3.61 身份验证绕过
medium
176454Atlassian Confluence < 7.19.9 (CONFSERVER-83218)
medium
176453Liferay Portal 7.4.3.4 < 7.4.3.49 身份验证绕过
medium
176452Liferay Portal 7.3.1 <= 7.3.7 / 7.4.0 < 7.4.3.18 SQL 注入
high
176450Liferay Portal 7.4.3.67 < 7.4.3.68 身份验证绕过
high
176448Liferay Portal 7.4.3.48 < 7.4.3.77 REDoS
high
176446Liferay Portal 7.4.3.21 <= 7.4.3.62 XSS
medium
176415Spring Cloud Gateway 代码注入 (CVE-2022-22947)
critical
176413Liferay Portal 7.4.3.41 <= 7.4.3.52 反射 XSS
medium
176409Liferay Portal 7.0.0 <= 7.0.6 / 7.1.0 <= 7.1.3 / 7.2.0 <= 7.2.1 / 7.3.0 < 7.3.1 验证不足
high
176401PaperCut MF 安全请求过滤器身份验证绕过 (CVE-2023-27351)
high
176383Liferay Portal 7.1.0 - 7.1.3、7.2.0 - 7.2.1、7.3.0 - 7.3.7、7.4.0 - 7.4.3.12 XSS
medium
176379FatPipe MPVPN < 10.1.2r60p92 / 10.2.2 < 10.2.2r44p1 配置文件上传 (CVE-2021-27860)
high
176378FatPipe MPVPN < 10.1.2r60p91 / 10.2.2 < 10.2.2r42 多种漏洞
critical
176251GitLab < 16.0.1 (CVE-2023-2825)
high
176211NoviSurvey 不安全反序列化漏洞 (CVE-2023-29492)
critical
176143WordPress 6.0 < 6.2.2
high
176109GitLab < 15.9.8 (CVE-2023-2181)
medium
176075Sophos Web Appliance 预认证命令注入 (CVE-2023-1671)
critical
176037PaperCut MF 检测
info
176036PaperCut MF 绕过身份验证 (CVE-2023-27350)
critical
175909WordPress 6.0 < 6.2.1
high
175835Jenkins Enterprise 和 Operations Center 2.346.x < 2.346.40.0.17 多个漏洞(CloudBees 安全公告 2023-05-16)
high
175782F5 Networks BIG-IQ iControl REST 任意文件上传 (K000132719)
medium
175674PaperCut NG 安全请求过滤器身份验证绕过 (CVE-2023-27351)
high
175429IBM Cognos Analytics 多个漏洞 (6986505)
critical
175414Elastic Kibana < 8.7.1 任意代码执行
high
175390Citrix ADC 和 Citrix Gateway 多个漏洞 (CTX477714)
high
175389ManageEngine ADManager Plus <= Build 7005 RCE(已弃用)
critical
175388Mattermost Server < 7.1.6 / 7.2.x < 7.7.2 信息泄露 (MMSA-2023-00138)
medium
175141GitLab 15.4 < 15.9.7 / 15.10 < 15.10.6 / 15.11 < 15.11.2 (CVE-2023-2478)
medium
175101ManageEngine ServiceDesk Plus < 14.1 Build 14105 XXE
medium
175100ManageEngine SupportCenter Plus < 14.2 Build 14200 XXE
medium
175099ManageEngine AssetExplorer < 6.9 Build 6989 XXE
medium
175098ManageEngine ServiceDesk Plus MSP < 14.2 Build 14200 XXE
medium
175050Jenkins Enterprise 和 Operations Center 2.346.x < 2.346.40.0.16 多个漏洞(CloudBees 安全公告 2023-05-03-security-advisory)
high
174996GitLab 15.10 < 15.10.5 / 15.11 < 15.11.1 (CVE-2023-2182)
high
174990GitLab 14.2 < 15.9.6 / 15.10 < 15.10.5 / 15.11 < 15.11.1 (CVE-2023-1965)
medium