检测

Nessus 的 CGI abuses 系列

ID名称严重性
191462Nagios XI < 2024R1.0.2 多个漏洞
high
191095Atlassian Confluence 1.0.1 < 7.19.18 / 7.20.x < 8.5.5 / 8.6.x < 8.7.2 / 8.8.0 (CONFSERVER-94106)
high
191094Atlassian Confluence 4.0 < 7.19.19 / 7.20.x < 8.5.4 / 8.6.x < 8.6.1 / 8.7.x < 8.7.1 (CONFSERVER-94510)
high
191088Atlassian Confluence 6.0.1 < 7.19.18 / 7.20.x < 8.5.5 / 8.6.x < 8.7.2 / 8.8.0 (CONFSERVER-94110)
high
191052Atlassian Confluence 6.10.x < 7.19.18 / 7.20.x < 8.5.5 / 8.6.x < 8.7.2 / 8.8.0 (CONFSERVER-94109)
high
191047Atlassian Confluence < 7.19.19 / < 8.5.6 / < 8.8.0 (CONFSERVER-94236)
high
191006Atlassian Crowd 3.4.x < 5.1.6 / 5.2.1 RCE (CWD-6139)
high
190933Liferay Portal 7.4.x < 7.4.3.5 XSS
critical
190932Liferay Portal 7.4.x < 7.4.3.98 多个漏洞
critical
190931Liferay Portal 7.4.x < 7.4.3.14 XSS
critical
190930Liferay Portal 7.4.x < 7.4.3.4 多个漏洞
critical
190929Liferay Portal 7.4.x < 7.4.3.102 XSS
critical
190893ConnectWise ScreenConnect Service < 23.9.8 认证绕过(直接检查)
critical
190887版本低于 8.16 的 VMWare Aria Operations 中存在特权提升漏洞 (VMSA-2024-0004)
medium
190868GitLab 16.4 < 16.7.6/16.8 < 16.8.3/16.9 < 16.9.1 (CVE-2024-0861)
medium
190867GitLab 15.1 < 16.7.6/16.8 < 16.8.3/16.9 < 16.9.1 (CVE-2024-0410)
high
190866GitLab 11.3 < 16.7.6/16.8 < 16.8.3/16.9 < 16.9.1 (CVE-2023-6736)
medium
190865GitLab 16.9 < 16.9.1 (CVE-2024-1451)
high
190864GitLab 16.5 < 16.7.6/16.8 < 16.8.3/16.9 < 16.9.1 (CVE-2023-6477)
medium
190863GitLab 12.0 < 16.7.6/16.8 < 16.8.3/16.9 < 16.9.1 (CVE-2023-4895)
medium
190862GitLab 0.0 < 16.7.6/16.8 < 16.8.3/16.9 < 16.9.1 (CVE-2023-3509)
medium
190786Joomla 1.5.x < 3.10.15/4.0.x < 4.4.3/5.0.x < 5.0.3 多个漏洞 (5904-joomla-5-0-3-and-4-4-3-security-and-bug-fix-release)
medium
190756Adobe FrameMaker 发布服务器身份验证绕过 (CVE-2024-20738)
critical
190508Mattermost Server < 8.1.8/9.x < 9.1.5/9.2.x < 9.2.4 (MMSA-2023-00276)
medium
190493TYPO3 8.0.0 < 8.7.57 ELTS/9.0.0 < 9.5.46 ELTS/10.0.0 < 10.4.43 ELTS/11.0.0 < 11.5.35/12.0.0 < 12.4.11/13.0.1 (TYPO3-CORE-SA-2024-004)
medium
190467TYPO3 8.0.0 < 8.7.57 ELTS/9.0.0 < 9.5.46 ELTS/10.0.0 < 10.4.43 ELTS/11.0.0 < 11.5.35/12.0.0 < 12.4.11/13.0.1 (TYPO3-CORE-SA-2024-002)
high
190466TYPO3 8.0.0 < 8.7.57 ELTS/9.0.0 < 9.5.46 ELTS/10.0.0 < 10.4.43 ELTS/11.0.0 < 11.5.35/12.0.0 < 12.4.11/13.0.1 (TYPO3-CORE-SA-2024-001)
medium
190465TYPO3 8.0.0 < 8.7.57 ELTS/9.0.0 < 9.5.46 ELTS/10.0.0 < 10.4.43 ELTS/11.0.0 < 11.5.35/12.0.0 < 12.4.11/13.0.1 (TYPO3-CORE-SA-2024-005)
medium
190453TYPO3 8.0.0 < 8.7.57 ELTS/9.0.0 < 9.5.46 ELTS/10.0.0 < 10.4.43 ELTS/11.0.0 < 11.5.35/12.0.0 < 12.4.11/13.0.1 (TYPO3-CORE-SA-2024-003)
medium
190452TYPO3 8.0.0 < 8.7.57 ELTS/9.0.0 < 9.5.46 ELTS/10.0.0 < 10.4.43 ELTS/11.0.0 < 11.5.35/12.0.0 < 12.4.11/13.0.1 (TYPO3-CORE-SA-2024-006)
high
190362Kibana 8.0.x < 8.12.1 (ESA-2024-01)
medium
190346通过 CDN 进行的 CKEditor 检测
info
190345GitLab 15.11 < 16.6.7/16.7 < 16.7.5/16.8 < 16.8.2 (CVE-2023-6386)
medium
190344GitLab 16.8 < 16.8.2 (CVE-2024-1250)
medium
190219VMWare Aria Operations for Networks 6.x < 6.12 多个漏洞 (VMSA-2024-0002)
high
190141SolarWinds Platform < 2023.4 SQLi
high
190108GitLab 13.3.0 < 16.6.7/16.7 < 16.7.5/16.8 < 16.8.2 (CVE-2024-1066)
medium
190107GitLab 16.4 < 16.6.7/16.7 < 16.7.5/16.8 < 16.8.2 (CVE-2023-6840)
medium
190095SolarWinds Platform < 2023.4 多个漏洞
high
190094ManageEngine ADAudit Plus < Build 7271 多个漏洞
critical
190063Ivanti Connect Secure 9.x / 22.x SSRF-RCE 链 (CVE-2024-21893)
high
190062Ivanti Connect Secure 9.x / 22.x SSRF (CVE-2024-21893)
high
190061Ivanti Policy Secure 9.x / 22.x SSRF (CVE-2024-21893)
high
190060Ivanti Policy Secure 9.x / 22.x SSRF-RCE 链 (CVE-2024-21893)
high
189951Ivanti Connect Secure 9.x/22.x 命令注入漏洞 (CVE-2024-21887)
critical
189950Ivanti Policy Secure 9.x/22.x 命令注入漏洞 (CVE-2024-21887)
critical
189949Ivanti Policy Secure 9.x/22.x 身份验证绕过漏洞 (CVE-2023-46805)
high
189948Ivanti Connect Secure 9.x/22.x 身份验证绕过漏洞 (CVE-2023-46805)
high
189904ManageEngine ADAudit Plus < Build 7270 目录遍历
low
189825WordPress 6.0 < 6.4.3
high