检测

Nessus 的 CGI abuses 系列

ID名称严重性
168359ManageEngine ServiceDesk Plus < 13.0 Build 13011 RCE
high
168358ManageEngine SupportCenter Plus < 11.0 Build 11026 多个漏洞
high
168357ManageEngine AssetExplorer 6.9 Build 6980 XXE
medium
168356ManageEngine ServiceDesk Plus MSP < 10.6 Build 10609 特权提升
medium
168355ManageEngine ServiceDesk Plus MSP < 13.0 Build 13000 RCE
high
168354ManageEngine SupportCenter Plus < 11.0 Build 11025 特权提升
medium
168353ManageEngine ServiceDesk Plus MSP < 13.0 Build 13001 XXE
medium
168352Mattermost Server < 7.4.0 DoS (MMSA-2022-00124)
medium
168351Mattermost Server < 7.1.4 / 7.2.x < 7.2.1 / 7.3.x < 7.3.1 DoS (MMSA-2022-00120)
medium
168350Mattermost Server < 7.1.4 / 7.2.x < 7.2.1 / 7.3.x < 7.3.1 DoS (MMSA-2022-00118)
medium
168325Atlassian Crowd 3.x / 4.x < 4.4.4 / 5.x < 5.0.3 安全绕过 (CWD-5888)
critical
168269Zimbra Collaboration Server 8.8.x < 8.8.15 Patch 35 / 9.0.0 < 9.0.0 Patch 28 多个漏洞
high
168019GitLab < 15.3.5 (CVE-2022-3818)
medium
167867WordPress 插件“Advanced Custom Fields”< 5.12.4, 6.x < 6.0.3 自定义字段值暴露
high
167634Jenkins Enterprise 和 Operations Center 2.346.x < 2.346.40.0.6 / 2.361.3.4 多个漏洞(CloudBees 安全公告 2022-11-15)
critical
167615VMware Workspace One Assist 多个漏洞 (VMSA-2022-0028)
critical
167509Dell EMC iDRAC9 < 6.00.30.00 (DSA-2022-265)
medium
167508Dell EMC iDRAC8 < 2.84.84.84 (DSA-2022-265)
medium
167261GitLab 12.6 < 15.3.5/15.4 < 15.4.4/15.5 < 15.5.2 (CVE-2022-3793)
medium
167195Citrix ADC 和 Citrix Gateway 12.1.x < 12.1-65.21 / 13.0.x < 13.0-88.12 / 13.1.x < 13.1-33.47 多个漏洞 (CTX463706)
critical
167098Joomla 4.0.x < 4.2.5 Joomla 4.2.5 安全和缺陷补丁版本 (5873-joomla-4-2-5-security-and-bug-fix-release)
medium
167072GitLab 14.5 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3413)
medium
167071GitLab 7.14 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3706)
medium
167070GitLab 15.0 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3819)
medium
167069GitLab 9.4 < 15.3.5/15.4 < 15.4.4/15.5 < 15.5.2 (CVE-2022-3486)
medium
167068GitLab 12.6 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3726)
critical
167048GitLab 12.1 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3483)
medium
166969GitLab 0.0 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-2251)
high
166966D-Link 路由器 RCE (CVE-2020-25506)
critical
166964Metabase SSRF (CVE-2022-39359)
medium
166963GitLab 10.1 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3280)
medium
166962GitLab 13.9 < 15.3.5/15.4 < 15.4.4/15.5 < 15.5.2 (CVE-2022-2761)
medium
166961ManageEngine OpManager SQLi (CVE-2022-27908)
high
166933Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1112)
medium
166932Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1108)
medium
166931Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9 (SVD-2022-1105)
high
166930Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1106)
high
166926Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9 (SVD-2022-1103)
high
166925Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1101)
medium
166924Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1107)
high
166923Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1102)
medium
166922Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1110)
medium
166921Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1111)
high
166920Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9、9.0.0 < 9.0.2 (SVD-2022-1109)
medium
166919Splunk Enterprise 8.1 < 8.1.12、8.2.0 < 8.2.9 (SVD-2022-1104)
medium
166901PHP 7.4.x < 7.4.33 多个漏洞
critical
166891D-Link 路由器 RCE (CVE-2021-45382)
critical
166889D-Link 路由器未经认证的 RCE (CVE-2019-16920)
critical
166703PHP 8.1.x < 8.1.12 多个漏洞
critical
166677PHP 8.0.x < 8.0.25 多个漏洞
critical