Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Nessus
(Tenable)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 64 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-01-31 | CVE-2016-9260 | Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files. | Nessus | 5.4 | ||
| 2017-02-28 | CVE-2016-9259 | Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | Nessus | 5.4 | ||
| 2014-07-23 | CVE-2014-4980 | The /server/properties resource in Tenable Web UI before 2.3.5 for Nessus 5.2.3 through 5.2.7 allows remote attackers to obtain sensitive information via the token parameter. | Nessus, Web_ui | N/A | ||
| 2014-04-11 | CVE-2014-2848 | A race condition in the wmi_malware_scan.nbin plugin before 201402262215 for Nessus 5.2.1 allows local users to gain privileges by replacing the dissolvable agent executable in the Windows temp directory with a Trojan horse program. | Nessus, Plugin\-Set | N/A |