检测

Nessus 的 CGI abuses 系列

ID名称严重性
298511BeyondTrust 特权远程访问 (PRA) <= 24.3.4 预身份验证 RCE (BT26-02)
critical
298510BeyondTrust Remote Support (RS) < 25.3.2 预身份验证 RCE (BT26-02)
critical
298255Atlassian Confluence 7.19 < 8.5.31/8.6.x < 9.2.13/9.3.x < 10.2.2 (CONFSERVER-101872)
critical
298241SmarterMail < 100.0.9511 通过 ConnectToHub API 实现未经身份验证的 RCE(CVE-2026-24423)
critical
298175Atlassian Confluence 7.7.x < 8.5.31 / 8.6.x < 9.2.13 / 9.3.1 < 10.2.2 (CONFSERVER-101878)
critical
298174Atlassian Confluence 7.13 < 9.2.11 / 9.3.1 < 10.1.0 (CONFSERVER-101827)
high
298043Atlassian Confluence 9.2.8 < 9.2.11 (CONFSERVER-101842)
medium
298040FreePBX 13.x < 13.0.197.14 / 14.x < 14.0.13.12 / 15.x < 15.0.16.27 远程管理员认证绕过
critical
298039FreePBX 17.0.2.36 < 17.0.3 命令注入 (GHSA-vm9p-46mv-5xvw)
high
297849ManageEngine OpManager 的子网详细信息中的存储型 XSS (CVE-2025-9226)
medium
297831Dotnetnuke 9.0.x < 9.13.10 / 10.0.x < 10.2.0 模块删除确认模式中的存储 XSS (CVE-2026-24837)
medium
297830Dotnetnuke 9.0.x < 9.13.10 / 10.0.x < 10.02.00 模块的页眉和页脚中的潜在 XSS 漏洞 (CVE-2026-24784]
medium
297829Dotnetnuke < 9.13.10 / 10.0.x < 10.02.00 模块描述中存储的 XSS (CVE-2026-24833)
medium
297828Dotnetnuke 9.0.x < 9.13.10 / 10.0.x < 10.02.00 Scheduler LogNotes 中存储的 XSS (CVE-2026-24836)
medium
297827Dotnetnuke < 9.13.10 / 10.0.x < 10.02.00 通过模块标题存储的 XSS (CVE-2026-24838)
medium
297224SmarterMail < 100.0.9511 身份验证绕过 (CVE-2026-23760)
critical
297222SmarterMail < 100.0.9413 不受限制文件上传远程代码执行 (CVE-2025-52691)
critical
297134Zimbra Collaboration Server 10.0.x < 10.0.18, 10.1.x < 10.1.13 本地文件包含
high
297129Splunk Enterprise 9.2.0 < 9.2.12、9.3.0 < 9.3.9、9.4.0 < 9.4.8、10.0.0 < 10.0.3 (SVD-2026-0101)
high
296366Oracle Primavera 网关2026 年 1 月 CPU
medium
295029Oracle Primavera Unifier2026 年 1 月 CPU
critical
294995Oracle Primavera P6 Enterprise Project Portfolio Management2026 年 1 月 CPU
medium
292785Atlassian Confluence 9.0.1 < 9.2.1 / 9.3.x < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101575)
high
292784Atlassian Confluence 9.0.1 < 9.2.1 / 9.3.x < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101573)
high
286274Kibana 7.x / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_08)
medium
286273Kibana 7.10.x < 7.17.30 / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_04)
medium
286272Kibana 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_05)
high
286271Kibana 7.10.x < 7.17.30 / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_03)
medium
286265ServiceNow Platform Jelly 模板注入 (CVE-2024-4879)
critical
283727Atlassian Confluence 9.0.1 < 9.2.1 / 9.3.1 < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101574)
critical
282639Atlassian Confluence 7.19.0 < 8.5.10 / 8.6.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101478)
high
282638Atlassian Confluence 7.19.0 < 8.5.20 / 8.6.x < 9.2.6 / 9.3.x < 9.3.1 / 9.4.0 ] / 9.5.x < 9.5.2 / 10.0.x < 10.0.2 / 10.1.0 / 10.2.0 (CONFSERVER-101489)
high
282478MongoDB 未经认证未初始化的堆内存泄漏 (MongoBleed)CVE-2025-14847直接检查
high
282475Libraesva ESG 4.5 < 5.0.31 / 5.1.20 / 5.2.31 / 5.3.16 / 5.4.8 / 5.5.7 命令注入 (CVE-2025-59689)
medium
282455Smartbedded Meteobridge < 6.2 RCE (CVE-2025-4008)
high
282328Atlassian Confluence < 8.5.31 / 8.6.x < 9.2.13 / 9.3.x < 10.2.2 (CONFSERVER-101788)
critical
282325Atlassian Confluence < 8.5.10 / 9.2.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101477)
high
282324Atlassian Confluence < 8.5.17 / 8.6.x < 9.2.6 / 9.3.1 < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101480)
high
282323Atlassian Confluence < 8.5.10 / 8.6.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101479)
high
282322Atlassian Confluence 10.1.x< 10.1.1 (CONFSERVER-101485)
high
282321Atlassian Confluence < 9.2.6 / 9.3.x < 9.4.0 / < 9.4.0 / 9.5.x < 9.5.2 / 10.0.x < 10.0.2 / 10.1.0 (CONFSERVER-101488)
critical
282316HPE OneView RCE (CVE-2025-37164)
critical
281853Joomla 3.9.x < 5.4.2 / 6.0.x < 6.0.2 Joomla 6.0.2 & 5.4.2 安全和缺陷补丁版本 (5942-joomla-6-0-2-and-5-4-2-security-bugfix-release)
high
281846Atlassian Confluence < 8.5.18 / 8.6.x < 9.2.1 / 9.3.x < 9.3.1 / 9.4.x < 9.5.4 / 10.0.x < 10.0.2 / 10.1.0 (CONFSERVER-101486)
high
280123Mattermost Server 10.11.x < 10.11.8 / 10.12.x < 10.12.4 / 11.0.x <= 11.0.6 / 11.1.x <= 11.1.1 身份验证不当 (MMSA-2025-00555)
high
279436WatchGuard Firebox OS 11.x / 12.x < 12.3.1_Update4 12.4.x < 12.5.15 / 12.6.x < 12.11.6 / 2025.x < 2025.1.4 越界写入 (CVE-2025-14733)
critical
279415PHP 8.1.x < 8.1.34 多个漏洞
high
279274PHP 8.2.x < 8.2.30 多个漏洞
high
279270PHP 8.4.x < 8.4.16 多个漏洞
high
279128PHP 8.5.x < 8.5.1 多个漏洞
high