Web Application Scanning Consolidation / Info Reporting

The script consolidates and reports various information for web application formerly called SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH SPDX-FileCopyrightText: New / improved code since 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

IBM DB2 Content Manager eClient < 8.4.1.1 Unspecified Security Vulnerability

According to its version number, the IBM DB2 Content Manager eClient install hosted on the remote web server is a version prior to 8.4.1.1, and is, therefore, potentially affected by an unspecified security vulnerability. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

eXtplorer Detection

Detection of eXtplorer. The script sends a connection request to the server and attempts to extract the version number from the reply. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Eaton Network Shutdown Module Default Administrator Credentials

The remote Eaton Network Shutdown Module install uses a default set of credentials to control access to its administrative functionality. With this information, an attacker can gain complete access to the application. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Search for specified dirs

This Plugin is searching for the specified webdirs. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PHP 5.3.9 'php_register_variable_ex()' Code Execution (intrusive check)

The remote host is running a version of PHP that is affected by an arbitrary code execution vulnerability. Specifically, the fix for the hash collision denial of service vulnerability CVE-2011-4885 introduces a remote code execution vulnerability in the function 'phpregistervariableex' in the fil...

EasySiteEdit 'sublink.php' Remote File Include Vulnerability

EasySiteEdit is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible. OpenVAS Vulnerability Test $Id:...

PHP Version Detection

Nessus was able to determine the version of PHP available on the remote web server. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid48243; scriptversion"1.32"; scriptsetattributeattribute:"pluginmodificationdate", value:"2026/01/22"; scriptxrefname:"IAVT",...

Movable Type Detection

Detection of Movable Type. The script sends a connection request to the server and attempts to extract the version number from the reply. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced source...

Flashlight Version Detection

This script finds the running Flashlight version. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PCI DSS compliance : options settings

This plugin reports the values of a few important scan settings if PCI DSS compliance checks are enabled. These scan settings are preset based on the scan template you have selected, but in some cases may be overriden. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...