检测

Nessus 的 CGI abuses 系列

ID名称严重性
171285ManageEngine ServiceDesk Plus MSP 未经身份验证的 RCE (CVE-2022-47966)
critical
171255Jenkins Enterprise 和 Operations Center 2.346.x < 2.346.40.0.8 多个漏洞(CloudBees 安全公告 2023-02-09)
critical
171254Atlassian Bitbucket 公共存储库枚举
info
171253Atlassian Bitbucket RCE (CVE-2022-36804)
high
171213TIBCO JasperReports Server 6.x < 6.2.5 / 6.3.0 / 6.3.2 / 6.3.3 / 6.4.0 / 6.4.2 信息泄露 (CVE-2018-5430)
high
171164GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-4167)
high
171163GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-4037)
high
171162GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (SECURITY-RELEASE-GITLAB-15-7-2-RELEASED) (CVE-2023-0042)
medium
171161GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 DoS (CVE-2022-4131)
medium
171160GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 XSS (CVE-2022-3573)
medium
171159GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 DoS (CVE-2022-3613)
high
171158GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-4365)
medium
171157GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-3870)
medium
171156GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-4342)
low
171155GitLab < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 DoS (CVE-2022-3514)
medium
171078ManageEngine ServiceDesk Plus 未经身份验证的 RCE (CVE-2022-47966)
critical
171074TYPO3 8.7.0 < 8.7.51 ELTS / 9.0.0 < 9.5.40 ELTS / 10.0.0 < 10.4.36 / 11.0.0 < 11.5.23 / 12.0.0 < 12.2.0 XSS (TYPO3-CORE-SA-2023-001)
medium
170956GitLab 14.0 < 15.6.7 / 15.7 < 15.7.6 / 15.8 < 15.8.1 (CVE-2023-0518)
high
170955GitLab 12.4 < 15.6.7 / 15.7 < 15.7.6 / 15.8 < 15.8.1 (CVE-2022-3411)
medium
170954GitLab 1.0 < 15.6.7/15.7 < 15.7.6/15.8 < 15.8.1 (CVE-2022-4138)
high
170953GitLab 14.3 < 15.6.7 / 15.7 < 15.7.6 / 15.8 < 15.8.1 (CVE-2022-3759)
high
170940Joomla 4.0.x < 4.2.7 多个漏洞 (5876-joomla-4-2-7-security-and-bug-fix-release)
medium
170730Drupal 9.4.x < 9.4.10 / 9.5.x < 9.5.2 / 10.0.x < 10.0.2 Drupal 漏洞 (SA-CORE-2023-001)
high
170661VMware vRealize Log Insight 8.x < 8.10.2 多种漏洞 (VMSA-2023-0001)
critical
170555Jenkins Enterprise 和 Operations Center 2.346.x < 2.346.40.0.7 多个漏洞(CloudBees 安全公告 2023-01-24)
critical
170195Oracle MySQL Enterprise Monitor DOS(2023 年 1 月 CPU)
critical
170194Oracle Primavera Gateway(2023 年 1 月 CPU)
critical
170193Oracle Primavera Unifier(2023 年 1 月 CPU)
high
170143Atlassian Bitbucket < 7.6.19 / 7.17.12 / 7.21.6 / 8.0.5 / 8.1.5 / 8.2.4 / 8.3.3 / 8.4.2 命令注入
critical
170067GitLab 11.3 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-4201)
medium
170066GitLab 15.6 < 15.6.1 (CVE-2022-4092)
high
170065GitLab 9.3 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-3902)
medium
170064GitLab 11.3 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-3482)
medium
170063GitLab 9.3 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-4054)
medium
170062GitLab 13.5 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-3572)
medium
170061GitLab 13.7 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-4255)
medium
170060GitLab 1.0 < 12.9.8/15.5 < 15.5.5/15.6 < 15.6.1 (CVE-2022-4205)
high
170059GitLab 12.9 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-3740)
medium
170058GitLab 12.8 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-3478)
medium
169976PHP 8.2.x < 8.2.1
critical
169975GitLab 15.4 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-3820)
medium
169907HTMLawed < 1.2.9 命令注入 (CVE-2022-35914)
critical
169906Zyxel 命令注入漏洞 (CVE-2022-30525)(直接检查)
critical
169673EMC RSA Archer 6.0 < 6.9 SP3 P4 / 6.10 < 6.10 P2 远程代码执行
high
169631PHP 8.1.x < 8.1.14
critical
169630PHP 8.0.x < 8.0.27
critical
169605ManageEngine PAM360 < 5.8 Build 5801 SQLi
critical
169582IBM Cognos Analytics 多个漏洞 (6841801)
critical
169572ManageEngine Access Manager Plus < 4.3 Build 4309 SQLi
critical
169571ManageEngine Password Manager Pro < 12.2 Build 12210 SQLi
critical