检测

Nessus 的 CGI abuses 系列

ID名称严重性
233432GitLab 13.5.0 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-2255)
high
233431GitLab 17.7 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-0811)
high
233430GitLab 17.8 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-2867)
medium
233429GitLab 17.4 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-2242)
high
233368Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0305)
medium
233367Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0306)
medium
233366Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3 (SVD-2025-0304)
medium
233365Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0307)
medium
233364Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3 (SVD-2025-0303)
medium
233363Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0302)
high
233297Apache Tomcat 路径等效 RCE (CVE-2025-24813)
critical
233193Liferay DXP XSS (CVE-2025-2536)
medium
233192Liferay Portal CE 7.4.3.82 < 7.4.3.129 XSS
medium
232982Drupal 10.3.x < 10.3.14 / 10.4.x < 10.4.5 / 11.x < 11.0.13 / 11.1.x < 11.1.5 Drupal 漏洞 (SA-CORE-2025-004)
medium
232887SolarWinds Web Help Desk < 12.8.5 信息泄露
medium
232871Jenkins 插件多个漏洞 (2025-03-19)
medium
232730ServiceNow Platform 的授权绕过漏洞 (CVE-2025-0337)
medium
232707PHP 8.2.x < 8.2.28 多个漏洞
high
232706PHP 8.1.x < 8.1.32 多个漏洞
high
232705PHP 8.4.x < 8.4.5 多个漏洞
high
232704PHP 8.3.x < 8.3.19 多个漏洞
high
232691ManageEngine ServiceDesk Plus MSP < 14.9 Build 14910
medium
232673GitLab 12.3 < 17.7.7/17.8 < 17.8.5/17.9 < 17.9.2 (CVE-2025-1257)
medium
232672GitLab 16.9 < 17.7.7/17.8 < 17.8.5/17.9 < 17.9.2 (CVE-2025-0652)
medium
232652HPE Insight Remote Support XXE (CVE-2024-53675)
high
232605Joomla 4.0.x < 4.4.12 / 5.0.x < 5.2.5 Joomla 5.2.5 安全和缺陷补丁版本 (5922-joomla-5-2-5-security-bugfix-release)
high
232287Kibana 8.15.x < 8.17.3 (ESA_2025_06)
high
232215GitLab 17.7.0 < 17.7.6/17.8 < 17.8.4/17.9 < 17.9.1 (CVE-2025-2045)
medium
232197GitLab 17.5 < 17.6.5/17.7 < 17.7.4/17.8 < 17.8.2 (CVE-2025-1540)
low
227562Jenkins LTS < 2.492.2 / Jenkins weekly < 2.500 多个漏洞
medium
217013GitLab 16.6 < 17.7.6/17.8 < 17.8.4/17.9 < 17.9.1 (CVE-2025-0555)
high
216997GitLab 15.10 < 17.7.6/17.8 < 17.8.4/17.9 < 17.9.1 (CVE-2025-0475)
high
216939Nagios XI < 2024R1.2.2 多个漏洞
medium
216938Mattermost Server 9.11.x < 9.11.7 / 10.4.x < 10.4.2 (MMSA-2025-00414)
low
216937Mattermost Server 9.11.x < 9.11.8 / 10.2.x < 10.2.3 / 10.3.x < 10.3.3 / 10.4.x < 10.4.2 (MMSA-2025-00430)
critical
216688Atlassian Confluence 6.10.x < 8.5.19 / 8.6.x < 9.2.1 (CONFSERVER-99216)
critical
216607Citrix NetScaler Console (ADM) 13.1.x < 13.0.56.18 / 14.1.x < 14.1.38.53 经过身份验证的特权提升漏洞 (CTX692579)
high
216596Atlassian Confluence 6.10.x < 8.5.19 / 8.6.x < 9.2.1 (CONFSERVER-99215)
critical
216497Drupal 10.3.x < 10.3.13 / 10.3.x < 10.3.13 / 10.4.x < 10.4.3 / 10.4.x < 10.4.3 / 11.x < 11.0.12 / 11.x < 11.0.12 / 11.1.x < 11.1.3 / 11.1.x < 11.1.3 多个漏洞 (drupal-2025-02-19)
high
216413Joomla 4.1.x < 4.4.11 / 5.0.x < 5.2.4 Joomla 5.2.4 安全和缺陷补丁版本 (5920-joomla-5-2-4-security-bugfix-release)
medium
216268Progress Telerik Report Server < 11.0.25.211 明文传输
medium
216265ManageEngine Endpoint Central 11.3.2428.x <= 11.3.2428.01、 11.3.2440.x <= 11.3.2440.0 不安全的直接对象引用
low
216240Zimbra Collaboration Server 10.0.x < 10.0.12、10.1.x < 10.1.4 SQLI
high
216239Zimbra Collaboration Server 9.0.x < 9.0.0 Patch 43、10.0.x < 10.0.12、10.1.x < 10.1.4 SSRF
medium
216222GitLab 16.11 < 17.6.5/17.7 < 17.7.4/17.8 < 17.8.2 (CVE-2025-1198)
medium
216205GitLab 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-0516)
medium
216189GitLab 13.3 < 17.6.5/17.7 < 17.7.4/17.8 < 17.8.2 (CVE-2025-0376)
medium
216188GitLab 15.7 < 17.6.5/17.7 < 17.7.4/17.8 < 17.8.2 (CVE-2025-1042)
high
216168GitLab 8.3 < 17.6.5/17.7 < 17.7.4/17.8 < 17.8.2 (CVE-2025-1212)
high
216060SolarWinds Platform 2024.4.0 < 2025.1 多个漏洞 XSS
critical