OpenClaw has a Path Traversal in Plugin Installation

Summary OpenClaw's plugin installation path derivation could be abused by a malicious plugin package.json name to escape the intended extensions directory and write files to a parent directory. Affected Packages / Versions - Package: openclaw npm - Affected: = 2026.1.20, = 2026.2.1 - Latest...

PT-2024-18043 · Kde · Kde Plasma Workspace

Name of the Vulnerable Software and Affected Versions: KDE Plasma Workspace versions up to 5.93.0 Description: A problematic vulnerability was found in KDE Plasma Workspace, affecting the function EventPluginsManager::enabledPlugins of the file components/calendar/eventpluginsmanager.cpp of the...

LDAP Active Directory - crossRef Enumeration

Binary data ldapenumcrossref.nbin...

LDAP Active Directory - trustedDomain Enumeration

Binary data ldapenumtrusteddomain.nbin...

LDAP Active Directory - Group Enumeration

Binary data ldapenumgroup.nbin...

Amazon Linux 2 : containerd (ALAS-2022-016) (deprecated)

This plugin has been deprecated following detection of an issue with overlapping filenames. Deprecated by al2ALASDOCKER-2022-016.nasl plugin ID 160406 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux 2 Security Advisory...

SSL/TLS Deprecated Ciphers (deprecated)

The remote host has open SSL/TLS ports which advertise deprecated cipher suites. The ciphers contained in these suites are no longer supported by most major ssl libraries such as OpenSSL, NSS, Mbed TLS, and wolfSSL and, as such, should not be used for secure communication. Nessus 8.9 and later no...

Fortinet FortiOS (Mac OS X) <= 5.4, 5.6.x < 5.6.8, 6.0.x < 6.0.5 SSL VPN Buffer Overflow (FG-IR-18-387) (deprecated)

The plugin was deprecated due to checking hosts for FortiClient instead of FortiOS. Use fortiosFG-IR-18-387.nasl plugin ID 125886 instead. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2020/11/18. Deprecated by fortiosFG-IR-18-387.nasl include"compat.inc"; if description scriptid12589...

MS KB2794220: Vulnerability in Internet Explorer Could Allow Remote Code Execution (deprecated)

The remote host is missing the workaround referenced in KB 2794220 Microsoft 'Fix it' 50971. This workaround mitigates a use-after-free vulnerability in Internet Explorer. Without this workaround enabled, an attacker could exploit this vulnerability by tricking a user into viewing a maliciously...

Deprecated

This plugin has been deprecated and is no longer functional. It was originally written to check Microsoft's workaround for CVE-2011-3389, but was replaced by plugin 57474 which checks for the patch that fixes this CVE. %NASLMINLEVEL 999999 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on...