检测

Nessus 的 CGI abuses 系列

ID名称严重性
234792Oracle Primavera Unifier 未经授权的写入2025 年 4 月 CPU
medium
234791Oracle Primavera Unifier 多个漏洞2025 年 4 月 CPU
high
234790Oracle Primavera Unifier DoS2025 年 4 月 CPU
high
234550Oracle Primavera 网关(2025 年 4 月 CPU)
high
234499DNN < 9.13.8 DotNetNuke.Core 服务器端请求伪造 (CVE-2025-32372)
medium
234130GitLab 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-2469)
low
234129GitLab 13.12 < 17.8.7/17.9 < 17.9.6/17.10 < 17.10.4 (CVE-2025-2408)
medium
234128GitLab < 17.8.7 / 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-1677)
medium
234127GitLab 7.7 < 17.8.7/17.9 < 17.9.6/17.10 < 17.10.4 (CVE-2025-0362)
medium
234076Sante PACS 服务器路径遍历 (CVE-2025-2264)
high
234029Joomla 4.0.x < 4.4.13 / 5.0.x < 5.2.6 Joomla 5.2.6 安全版本 (5925-joomla-5-2-6-security-release)
high
233866Mitel MiCollab <= 9.8 SP2 (9.8.2.12) 多个漏洞 (MISA-2024-0029)
critical
233861Zabbix 5.x < 5.0.46rc1 / 6.x < 6.0.38rc1 / 7.0.x < 7.0.9rc1 / 7.2.x < 7.2.3rc1 用户枚举 (ZBX-26255)
low
233779Jenkins LTS < 2.492.3 / Jenkins weekly < 2.504 多个漏洞
medium
233778Jenkins 插件多个漏洞(2025 年 4 月 2 日)
high
233660Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3 (SVD-2025-0301)
high
233656Kubernetes Ingress NGINX 控制器任意代码执行 (CVE-2025-1974)
critical
233477SAP NetWeaver AS Java 路径遍历 (CVE-2017-12637)
high
233455Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 (MMSA-2025-00421)
medium
233454Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 / 10.5 (MMSA-2025-00444)
high
233453Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 (MMSA-2025-00418)
medium
233452Mattermost Server 10.4.x < 10.4.3 / 10.3.x < 10.3.4 /9.11.x < 9.11.9 / 10.5.x < 10.5.1 (MMSA-2025-00432)
medium
233451Mattermost Server 9.11.x < 9.11.9 (MMSA-2024-00409)
low
233450Mattermost Server 9.11.x < 9.11.9 / 10.3.x < 10.3.4 / 10.4.x < 10.4.3 (MMSA-2025-00422)
medium
233432GitLab 13.5.0 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-2255)
high
233431GitLab 17.7 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-0811)
high
233430GitLab 17.8 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-2867)
medium
233429GitLab 17.4 < 17.8.6/17.9 < 17.9.3/17.10 < 17.10.1 (CVE-2025-2242)
high
233368Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0305)
medium
233367Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0306)
medium
233366Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3 (SVD-2025-0304)
medium
233365Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0307)
medium
233364Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3 (SVD-2025-0303)
medium
233363Splunk Enterprise 9.1.0 < 9.1.8、9.2.0 < 9.2.5、9.3.0 < 9.3.3、9.4.0 < 9.4.1 (SVD-2025-0302)
high
233297Apache Tomcat 路径等效 RCE (CVE-2025-24813)
critical
233193Liferay DXP XSS (CVE-2025-2536)
medium
233192Liferay Portal CE 7.4.3.82 < 7.4.3.129 XSS
medium
232982Drupal 10.3.x < 10.3.14 / 10.4.x < 10.4.5 / 11.x < 11.0.13 / 11.1.x < 11.1.5 Drupal 漏洞 (SA-CORE-2025-004)
medium
232887SolarWinds Web Help Desk < 12.8.5 信息泄露
medium
232871Jenkins 插件多个漏洞 (2025-03-19)
medium
232730ServiceNow Platform 的授权绕过漏洞 (CVE-2025-0337)
medium
232707PHP 8.2.x < 8.2.28 多个漏洞
high
232706PHP 8.1.x < 8.1.32 多个漏洞
high
232705PHP 8.4.x < 8.4.5 多个漏洞
high
232704PHP 8.3.x < 8.3.19 多个漏洞
high
232691ManageEngine ServiceDesk Plus MSP < 14.9 Build 14910
medium
232673GitLab 12.3 < 17.7.7/17.8 < 17.8.5/17.9 < 17.9.2 (CVE-2025-1257)
medium
232672GitLab 16.9 < 17.7.7/17.8 < 17.8.5/17.9 < 17.9.2 (CVE-2025-0652)
medium
232652HPE Insight Remote Support XXE (CVE-2024-53675)
high
232605Joomla 4.0.x < 4.4.12 / 5.0.x < 5.2.5 Joomla 5.2.5 安全和缺陷补丁版本 (5922-joomla-5-2-5-security-bugfix-release)
high