检测

插件

Nessus 的 CGI abuses 系列

ID	名称	严重性
265721	Dotnetnuke < 10.1.0 Prompt 模块中的存储跨站脚本 (XSS) (GHSA-2qxc-mf4x-wr29)	high
265720	Dotnetnuke < 10.1.0 使用后端管理员凭据存储的 XSS (GHSA-gj8m-5492-q98h)	high
265718	Dotnetnuke < 10.1.0 使用 url 进行配置文件的反射型跨站脚本 (XSS) (GHSA-jc4g-c8ww-5738)	high
265441	Atlassian Confluence 2.0 < 8.5.24 / 8.6.x < 9.2.6 / 9.3.x < 9.5.2 / 10.0.x < 10.0.3 RCE (CONFSERVER-100795)	high
265438	Fortra GoAnywhere Managed File Transfer (MFT) < 7.6.3 / 7.7.x < 7.8.4 反序列化 (CVE-2025-10035)	critical
265328	Openfire < 5.0.2 / 5.1.0 身份欺骗	medium
265325	Jenkins LTS < 2.516.3 / Jenkins weekly < 2.528 多个漏洞	high
264901	Mattermost Server 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.4 / 10.10.x < 10.10.1 / 10.11.0 路径遍历 (MMSA-2025-00501)	medium
264900	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.4 / 10.10.x < 10.10.1 / 10.11.0 不当验证 (MMSA-2025-00506)	medium
264899	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.3 / 10.10.0 多种漏洞（MMSA-2025-00498、 MMSA-2025-00499）	medium
264626	Mattermost 服务器 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.3 / 10.10.x < 10.10.1 / 10.11.0 不受限制的文件上传 (MMSA-2025-00505)	medium
264625	Mattermost Server 10.5.x < 10.5.9 / 10.10.0 错误授权 (MMSA-2025-00470)	medium
264624	Mattermost Server 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.10.0 错误授权 (MMSA-2025-00485)	low
264600	GitLab 10.7 < 18.1.6 / 18.2 < 18.2.6 / 18.3 < 18.3.2 (CVE-2025-10094)	medium
264599	GitLab 7.8 < 18.1.6 / 18.2 < 18.2.6 / 18.3 < 18.3.2 (CVE-2025-7337)	medium
264598	GitLab 15.1 < 18.1.6 / 18.2 < 18.2.6 / 18.3 < 18.3.2 (CVE-2025-6769)	medium
264597	GitLab 15.0 < 18.1.6 / 18.2 < 18.2.6 / 18.3 < 18.3.2 (CVE-2025-1250)	medium
264596	GitLab 7.12 < 18.1.6 / 18.2 < 18.2.6 / 18.3 < 18.3.2 (CVE-2025-2256)	high
264595	GitLab 16.11 < 18.1.6 / 18.2 < 18.2.6 / 18.3 < 18.3.2 (CVE-2025-6454)	high
261788	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-020)	medium
261786	TYPO3 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-018)	medium
261784	TYPO3 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-023)	medium
261780	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-022)	high
261779	TYPO3 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-019)	medium
261778	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-021)	medium
261777	TYPO3 9.0.0 < 9.5.55 ELTS / 10.0.0 < 10.4.54 ELTS / 11.0.0 < 11.5.48 ELTS / 12.0.0 < 12.4.37 / 13.0.0 < 13.4.18 (TYPO3-CORE-SA-2025-017)	medium
261775	配置数据库 0.41.x < 0.41.7 / 0.42.x < 0.42.4 / 1.41.x < 1.41.7 / 1.42.x 1.42.4	high
261774	配置数据库 0.41.x < 0.41.9 / 0.42.x < 0.42.6 / 0.43.x < 0.43.7 ] / 0.44.x < 0.44.5 / 1.41.x < 1.41.9 / 1.42.x < 1.42.6 / 1.43.x < 1.43.7 / 1.44.x 1.44.5	medium
261773	配置数据库 0.43.x < 0.43.7.1 / 0.44.x < 0.44.6.1 / 0.45.x < 0.45.2.1 / 1.43.x < 1.43.7.1 / 1.44.x < 1.44.6.1 / 1.45.x 1.45.2.1	medium
261772	Metabase < 0.29.3 XSS	medium
261771	元数据库 0.44.5	medium
261770	Metabase 0.43.x < 0.43.7.3 / 0.44.x < 0.44.7.3 /0.45.x < 0.45.4.3 / 0.46.x < 0.46.6.4 / 1.43.x < 1.43.7.3 / 1.44.x < 1.44.7.3 / 1.45.x < 1.45.4.3 / 1.46.x < 1.46.6.4	critical
261769	配置数据库 0.42.x < 0.42.6 / 0.43.x < 0.43.7 / 0.44.x < 0.44.5 / 1.42.x < 1.42.6 / 1.43.x < 1.43.7 / 1.44.x 1.44.5	medium
261768	配置数据库 0.44.x < 0.44.7 / 0.45.x < 0.45.4 / 0.46.x < 0.46.3 / 1.44.x < 1.44.7 / 1.45.x < 1.45.4 / 1.46.x 1.46.3	critical
261767	配置数据库 0.41.x < 0.41.7 / 0.42.x < 0.42.4 / 1.40.x < 1.40.8 / 1.41.x < 1.41.7 / 1.42.x 1.42.4	medium
261766	配置数据库 0.41.x < 0.41.9 / 0.42.x < 0.42.6 / 0.43.x < 0.43.7 ] / 0.44.x < 0.44.5 / 1.41.x < 1.41.9 / 1.42.x < 1.42.6 / 1.43.x < 1.43.7 / 1.44.x 1.44.5	high
261765	元数据库 1.40.5	high
261764	配置数据库 0.40.x < 0.40.8 / 0.41.x < 0.41.7 / 0.42.x < 0.42.4 / 1.40.x < 1.40.8 / 1.41.x < 1.41.7 / 1.42.x 1.42.4	medium
261763	配置数据库 1.52.x 1.52.2.5	high
261502	ManageEngine ServiceDesk Plus < 15.1 Build 15110 权限升级	high
261501	ManageEngine ServiceDesk Plus MSP < 14.9 Build 14940 权限升级	high
261484	Sitecore XP 不安全的反序列化SC2025-005	critical
261465	Kibana 9.0.x < 9.0.6 / 9.1.x < 9.1.3 错误授权 (ESA-2025-13)	medium
261154	Jenkins 插件多个漏洞 (2025-09-03)	medium
258075	Mattermost 服务器 9.11.x < 9.11.18 / 10.5.x < 10.5.9 / 10.8.x < 10.8.4 / 10.9.x < 10.9.2 / 10.10.0 (MMSA-2025-00500)	medium
258046	GitLab < 18.1.5 / 18.2 < 18.2.5 / 18.3 < 18.3.1 (CVE-2025-2246)	medium
258045	GitLab 8.15 < 18.1.5 / 18.2 < 18.2.5 / 18.3 < 18.3.1 (CVE-2025-3601)	medium
258044	GitLab 14.1 < 18.1.5 / 18.2 < 18.2.5 / 18.3 < 18.3.1 (CVE-2025-4225)	medium
258043	GitLab < 18.1.5 / 18.2 < 18.2.5 / 18.3 < 18.3.1 (CVE-2025-5101)	medium
255232	NetScaler ADC and NetScaler Gateway 多个漏洞 (CTX694938)	critical

检测

Nessus 的 CGI abuses 系列

high

high

high

high

critical

medium

high

medium

medium

medium

medium

medium

low

medium

medium

medium

medium

high

high

medium

medium

medium

high

medium

medium

medium

high

medium

medium

medium

medium

critical

medium

critical

medium

high

high

medium

high

high

high

critical

medium

medium

medium

medium

medium

medium

medium

critical