CAGE Web Design | Rolf Van Gelder Security Vulnerabilities
The remote web server is the user interface for NAS4Free, an open-source network-attached storage software distribution based on FreeBSD. NAS4Free is a direct continuation of the original FreeNAS...
2.2AI Score
Junos J-Web, a web application for sending and receiving SMS, was detected on the remote...
7.5AI Score
0.9AI Score
0.6AI Score
Buffalo TeraStation Web detection
Buffalo TeraStation, a network attached storage (NAS), was detected based on the web...
1.5AI Score
Belkin Web Interface Detection
Nessus was able to detect the web administration interface for a Belkin device on the remote...
1.6AI Score
ClearSCADA Web Server Detection
The remote host is running the ClearSCADA web server, part of a software platform for managing and monitoring remote SCADA...
1.9AI Score
The web UI for Grafana Labs was detected on the remote host. Note : The application can be reconfigured to reveal the version by setting hide_version = false under [auth.anonymous] in the grafana.ini...
7AI Score
Apple AirPlay, formerly AirTunes, was detected on the remote host. It is possible to obtain information about the remote device from this service's...
1.1AI Score
0.3AI Score
NETGEAR Web Interface Detection
Nessus was able to detect the web administration interface for a NETGEAR device on the remote...
1.6AI Score
Graylog2 Web Interface Detection
The web interface for Graylog2, a log collection and analysis platform, was detected on the remote host. It is possible to extract version information if login credentials are provided on...
1.8AI Score
Oracle Web Determinations Detection
The remote web server hosts Oracle Web Determinations, a web-based interactive assessment system that is a component of Oracle Policy...
1.7AI Score
The remote web server is hosting Open Web Analytics, a web application framework for tracking and analyzing website and web application...
1.1AI Score
The remote host is a McAfee Web Gateway (MWG) Appliance. MWG acts as a proxy server and provides web filtering and monitoring...
1.5AI Score
IBM Engineering Requirements Management 9.7.2.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: .....
4.8CVSS
4.8AI Score
0.0004EPSS
namshi/jose insecure JSON Web Signatures (JWS)
namshi/jose allows the acceptance of unsecure JSON Web Signatures (JWS) by default. The vulnerability arises from the $allowUnsecure flag, which, when set to true during the loading of JWSes, permits tokens signed with 'none' algorithms to be processed. This behavior poses a significant security...
7AI Score
namshi/jose insecure JSON Web Signatures (JWS)
namshi/jose allows the acceptance of unsecure JSON Web Signatures (JWS) by default. The vulnerability arises from the $allowUnsecure flag, which, when set to true during the loading of JWSes, permits tokens signed with 'none' algorithms to be processed. This behavior poses a significant security...
7AI Score
Summary The IBM® Engineering System Design Rhapsody 9.0.1 iFix006 and The IBM® Engineering System Design Rhapsody 9.0.2 iFix002 contains fixes which was identified as a vulnerability during OSS scan. These version contain upgraded version of guava-28.0-jre.jar (CVE-2020-8908), httpclient-4.0.jar...
9.8CVSS
8.1AI Score
0.129EPSS
4.3CVSS
7.4AI Score
0.001EPSS
Exploit for Improper Privilege Management in Openwebanalytics Open Web Analytics
CVE-2022-24637 Unauthenticated RCE in Open Web Analytics...
9.8CVSS
9.4AI Score
0.894EPSS
Joomla! Plugin Core Design Scriptegrator - Local File Inclusion
A directory traversal vulnerability in plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allows remote attackers to read, and possibly include and execute, arbitrary files via directory traversal sequences in the files[]...
6.8AI Score
0.016EPSS
Mattermost crashes web clients via a malformed custom status in...
4.3CVSS
4.6AI Score
0.0004EPSS
Symantec Web Gateway Login Utility
This module will attempt to authenticate to a Symantec Web...
7.2AI Score
7.8CVSS
7.7AI Score
0.01EPSS
7.8CVSS
8.1AI Score
0.006EPSS
It is possible to browse the information of the OWA server by accessing as an anonymous...
6.2AI Score
0.015EPSS
The remote server is running a Citrix Web Interface server that is vulnerable to cross site...
6.2AI Score
0.009EPSS
Web Server Cross Site Scripting
The remote web server seems to be vulnerable to a cross-site scripting (XSS)...
6.5AI Score
SAP Solution Manager Web Detection
The web interface for SAP Solution Manager was detected on the remote host. SAP Solution Manager is application lifecycle management software. Note: This plugin does not report anything. Instead, it collects information stored in host tags for the future development of this...
0.4AI Score
Cisco HyperFlex Web API Detection
The web API for Cisco HyperFlex was detected on the remote...
1AI Score
Cisco Energy Management Web Detection
Cisco Energy Management, a power management solution for IT assets, was detected based on the web...
2.1AI Score
Apache Nifi Web Interface Detection
The web interface for Apache Nifi was detected on the remote host. Apache Nifi is a software project designed to automate the flow of data between software systems. NOTE: Nifi version 14.0 and later requires the server's hostname to be added to nifi.web.https.host in nifi.properties to be scanned.....
3.9AI Score
Oracle iPlanet Web Server Detection
Oracle iPlanet Web Server (formerly Sun Java System Web Server) was detected on the remote host. iPlanet is a web server that is used for secure infrastructure hosting found in enterprise...
0.8AI Score
The web user interface for Apache Kylin was detected on the remote...
7.5AI Score
Tableau Server Web UI Detection
The web user interface for Tableau Server was detected on the remote...
0.8AI Score
Netwrix Auditor Web API Detection
Netwrix Auditor, an auditing and optimization solution used for compliance operations was detected on the remote host via the Netwrix Integrator API. Note: HTTP basic authentication credentials are required by the API for reliable detection. Alternatively, when the paranoid setting is enabled the.....
1.4AI Score
ThoughtWorks GoCD Web interface detection
ThoughtWorks GoCD, a CI / CD server, was detected based on the web...
1AI Score
1AI Score
Apache Flink web user interface detected on remote host. Apache Flink is an open-source, unified stream-processing and batch-processing framework developed by the Apache Software...
1.6AI Score
Cisco Aironet Web UI Detection.
Cisco Aironet web user interface detected on remote host. Note that HTTP credentials are required to retrieve the...
1.7AI Score
Embedded HP Web Server Detected
The remote host has been identified as using an HP embedded web...
0.4AI Score
Nokia VitalQIP Web Client Detection
The remote host is running an instance of VitalQIP, an DNS, DHCP, and IP address (DDI) management system. VitalQIP was originally created by Alcatel-Lucent but acquired by...
1.4AI Score
Grandstream Phone Web Interface Detection
Nessus was able to detect the web interface for a Grandstream phone on the remote...
1.1AI Score
Zimbra Collaboration Server Web Detection
The web interface for Zimbra Collaboration Server, an open source messaging and collaboration solution, was detected on the remote host. Note the plugin attempts to retrieve the version information without credentials. However, if HTTP Basic credentials are supplied then an attempt to retrieve the....
1.8AI Score
The web interface for a Dell KACE K1000 appliance was detected on the remote host. The K1000 is used to manage multiple systems via the...
1.7AI Score
Apache Superset Web Interface Detection
The web interface for Apache Superset, an open-source modern data exploration and visualization platform, was detected on the remote...
7.5AI Score
Apache Airflow Web API Detection
The web application or API for Apache Airflow was detected on the remote host. Note: Prior to Apache Airflow 2.0.0, the API is considered experimental and may not return the version information through the...
2.8AI Score
Azure CycleCloud Web UI Detection
Azure CycleCloud web user interface detected on remote host. Azure CycleCloud is a tool developed by Microsoft for orchestrating and managing High Performance Computing (HPC) environments on...
0.8AI Score
Buffalo Router Web Interface Detection
Nessus was able to detect the web administration interface for a Buffalo router on the remote...
2.1AI Score