177629 matches found
Samsung SyncThru Web Service Detection (HTTP)
HTTP based detection of Samsung SyncThru Web Service. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Swarmpit Web UI Public WAN (Internet) / Public LAN Accessible
The script checks if the Swarmpit Web UI is accessible from a public WAN Internet / public LAN. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Windows Defender Firewall: Public Profile: Apply local connection security rules
The policy determines whether the local connection rules are merged with GP settings when connected to a public network. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Spectre Variant 2 (CVE 2017-5715) Branch Target Injection Update Disable (KB4078130)
This host is missing a critical update according to Microsoft KB4078130 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft SQL Server 2016 Information Disclosure Vulnerability (KB4019088)
This host is missing an important security update according to Microsoft KB4019088. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...
TeamPass Default Admin Credentials (HTTP)
TeamPass is using default admin credentials for the web login. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:teampass:teampass"...
SSL/TLS: Certificate Will Soon Expire
The remote server SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103957";...
Malformed ICMP Packets May Cause a Denial of Service (SCTP)
It is possible to crash the remote host by sending it malformed ICMP packets. SPDX-FileCopyrightText: 2005 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OpenSMTPD 6.4.0 < 6.6.2p1 RCE Vulnerability - Active Check
OpenSMTPD is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Ubuntu: Security Advisory (USN-4157-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-4508-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-4485-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Red Hat JBoss Application Server (AS) Console and Web Management Misconfiguration Vulnerability - Active Check
The default configuration of Red Hat JBoss Application Server AS does not restrict access to the console and web management interfaces, which allows remote attackers to bypass authentication and gain administrative access via direct requests. SPDX-FileCopyrightText: 2019 Greenbone AG Some text...
Microsoft Windows Multiple Vulnerabilities (KB4503327)
This host is missing a critical security update according to Microsoft KB4503327 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
TYPO3 Multiple Vulnerabilities (Jan 2019)
TYPO3 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; if description...
jQuery < 1.6.3 XSS Vulnerability
jQuery is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jquery:jquery"; if...
Apache Tomcat Security Bypass and Information Disclosure Vulnerabilities - Windows
Apache Tomcat is prone to security bypass and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Adobe ColdFusion Multiple Vulnerabilities (APSB17-14)
Adobe ColdFusion is prone to cross site scripting XSS and remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
HPE Network Products Remote Unauthorized Disclosure of Information Vulnerability
Potential security vulnerabilities with OpenSSL have been addressed in HPE Network Products including Comware v7 and VCX. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
IPMI Default Credentials (IPMI Protocol) - Active Check
It was possible to find default password/username combinations for the Intelligent Platform Management Interface IPMI protocol. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
arachni (NASL wrapper)
This plugin uses arachni ruby command line to find web security issues. See the preferences section for arachni options. Note that OpenVAS is using limited set of arachni options. Therefore, for more complete web assessment, you should use standalone arachni tool for deeper/customized checks...
Basic Analysis and Security Engine Multiple Input Validation Vulnerabilities
Basic Analysis and Security Engine BASE is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include an SQL-injection issue, a cross-site scripting issue, and a local file-include issue. SPDX-FileCopyrightText: 20...
Fedora: Security Advisory (FEDORA-2025-4430674f97)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft .NET Framework Remote Code Execution Vulnerability (KB4566517)
This host is missing a critical security update according to Microsoft KB4566517 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
Debian: Security Advisory (DLA-1819-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OTRS 6.0.x < 6.0.18, 7.0.x < 7.0.7 XSS Vulnerability
OTRS is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if...
MySQL Privilege Escalation Vulnerability - Windows
MySQL is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mysql:mysql"; ifdescripti...
Elastic Elasticsearch < 1.3.8, 1.4.x < 1.4.3 Groovy Scripting Engine Unauthenticated RCE Vulnerability - Active Check
Elastic Elasticsearch is prone to an unauthenticated remote code execution RCE. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Microsoft Office Excel Remote Code Execution Vulnerabilities (2489279)
This host is missing a critical security update according to Microsoft Bulletin MS11-021. OpenVAS Vulnerability Test $Id: secpodms11-021.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Office Excel Remote Code Execution Vulnerabilities 2489279 Authors: Antu Sanadi Copyright: Copyright c 2011 SecPo...
AWStats < 6.6 'awstats.pl' Multiple Path Disclosure Vulnerability - Active Check
AWStats is prone to a path-disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:awstats:awstats";...
FTPD glob Heap Corruption
The FTPD glob vulnerability manifests itself in handling of the glob command. The problem is not a typical buffer overflow or format string vulnerability, but a combination of two bugs: an implementation of the glob command that does not properly return an error condition when interpreting the...
Node.js 20.x < 20.11.1, 21.x < 21.6.2 Multiple Vulnerabilities - Windows
Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...
VMware Spring Boot End of Life (EOL) Detection
The VMware Spring Boot version on the remote host has reached the End of Life EOL and should not be used anymore. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
WordPress Adaptive Images Plugin < 0.6.67 Multiple Vulnerabilities
The WordPress plugin Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...
Microsoft Windows Multiple Vulnerabilities (KB4503293)
This host is missing a critical security update according to Microsoft KB4503293 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4096494)
This host is missing an important security update according to Microsoft KB4096494 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Apache Tomcat Security Constraint Incorrect Handling Access Bypass Vulnerabilities - Windows
Apache Tomcat is prone to multiple access bypass vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat";...
Siemens SIMATIC CP Device Detection (FTP)
This script performs FTP based detection of Siemens SIMATIC CP devices. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Authenticated Scan / LSC Info Consolidation (Linux/Unix SSH Login)
Consolidation and reporting of various technical information about authenticated scans / local security checks LSC via SSH for Linux/Unix targets. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
Progress / Ipswitch WhatsUp Gold Detection (HTTP)
HTTP based detection of Progress / Ipswitch WhatsUp Gold. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
HP (OpenView Storage) Data Protector Multiple Vulnerabilities
HP OpenView Storage Data Protector is prone to multiple vulnerabilities. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...
YaPiG Password Protected Directory Access Flaw
The remote web server contains a PHP application that is prone to an information disclosure flaw. Description : The remote host is running YaPiG, a web-based image gallery written in PHP. The remote version of this software contains a flaw that can let a malicious user view images in password...
Microsoft Windows Multiple Vulnerabilities (KB5048652)
This host is missing an important security update according to Microsoft KB5048652 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Fedora Update for kernel FEDORA-2019-aabdaa013d
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Adminer Editor Detection
The script sends a HTTP request to the remote server and tries to identify an Adminer Editor installation and it SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Kaseya Virtual System Administrator Agent <= 9.4.0.36 Local Privilege Escalation Vulnerability
Kaseya Virtual System Administrator agent is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...
Microsoft Internet Explorer Multiple Vulnerabilities (3116180)
This host is missing a critical security update according to Microsoft Bulletin MS15-124. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Fedora Update for dokuwiki FEDORA-2012-6630
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Check Sendmail Configuration
Checks the Sendmail Configuration. The Script test the SMTP Sendmail Server if the commands DEBUG, VRFY and EXPN are available. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Debian Security Advisory DSA 1381-1 (linux-2.6)
The remote host is missing an update to linux-2.6 announced via advisory DSA 1381-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...