new tests
January 31, 2025
Now testing for the following vulnerabilities
New tests released based on submissions by our Detectify Crowdsource hackers:
- CVE-2024-56159: Astro Sourcemap Exposure [7.5 / High]
- CVE-2024-51479: Next.js Authorization Bypass [7.5 / High]
- CVE-2024-50603: Aviatrix Controller RCE [10.0 / Critical]
- CVE-2024-55218: IceWarp XSS [6.1 / Medium]
New tests released by Detectify staff:
- CVE-2024-1209: WordPress Plugin "LearnDash LMS" Sensitive Information Exposure via Assignments [5.3 / Medium]
- CVE-2024-33610: Sharp Multi Functional Printers Improper Authentication [9.1 / Critical]
- CVE-2024-40422: Devika v1 Path Traversal [9.1 / Critical]
- CVE-2024-41713: Mitel MiCollab Path Traversal [9.1 / Critical]
- CVE-2024-48455: Netis Information Disclosure [5.3 / Medium]
- CVE-2024-54152: Angular Expressions RCE [8.2 / High]
- CVE-2024-56512: Apache NiFi Information Disclosure [5.3 / Medium]
- CVE-2024-8752: WebIQ Path Traversal [7.5 / High]
- CVE-2024-8877: Riello Netman 204 SQL-injection [9.8 / Critical]
- CVE-2025-22711: WordPress Plugin "image-source-control-isc" (Image Source Control Lite – Show Image Credits and Captions) DOM XSS [7.1 / High]
- CVE-2024-34351: Next.js Server Side Request Forgery [7.5 / High]
- CVE-2024-5421: SEH utnserver Pro/ProMAX/INU File Exposure [7.5 / High]
- CVE-2024-49757: Zitadel Authentication Bypass [7.5 / High]
Improved finding information:
- ASP.NET Application Settings (appsettings.json) File Disclosure
- AWS S3 Bucket Content Included In Response
- CVE-2012-1823: PHP CGI Argument Injection RCE
- CVE-2015-7297: SQL injection vulnerability in Joomla! 3.2 before 3.4.4
- CVE-2015-7808: vBulletin RCE
- CVE-2015-8398: Atlassian Confluence Reflected XSS
- CVE-2016-0957: Adobe AEM Felix Console Authentication Bypass
- CVE-2016-0957: Adobe AEM Felix Console Bundles Disclosure
- CVE-2016-0957: Adobe AEM Felix Console Disclosure
- CVE-2017-1000028: Oracle GlassFish Path Traversal
- CVE-2017-17736: Kentico CMS Privilege Escalation via Installer
- CVE-2017-7415: Atlassian Confluence Authentication Bypass
- CVE-2018-1000407: Jenkins API XML Reflected XSS
- CVE-2018-1000600: Jenkins SSRF
- CVE-2018-11409: Splunk Server Info Disclosure
- CVE-2018-16341: Nuxeo Authentication Bypass and RCE via SSTI
- CVE-2018-17184: Apache Syncope XSS
- CVE-2018-19365: Wowza Streaming Engine Manager Path Traversal
- CVE-2018-9126: DNN Get-CSS SSRF
- CVE-2019-10405: Jenkins "Who Am I" HttpOnly Cookie Disclosure
- CVE-2019-10475: Jenkins Build-Metrics 1.3 XSS
- CVE-2019-11600: OpenProject Unauthentication SQL Injection
- CVE-2019-12314: Deltek Maconomy 2.2.5 Local File Inclusion
- CVE-2019-13635: WordPress Plugin "WP Fastest Cache" (wp-fastest-cache) Path Traversal
- CVE-2019-14322: Odoo Local File Inclusion
- CVE-2019-14538: vBulletin 5.5.3 Reflected XSS
- CVE-2019-15107: Webmin Password Reset RCE
- CVE-2019-15231: Webmin Password Reset RCE
- CVE-2019-16332: WordPress Plugin "API Bearer Auth" (api-bearer-auth) Reflected XSS
- CVE-2019-16662: rConfig Unauthenticated RCE
- CVE-2019-16759: vBulletin RCE
- CVE-2019-17382: Zabbix Authentication Bypass
- CVE-2019-17671: WordPress Unauthenticated View Private/Draft Posts
- CVE-2019-18935: Telerik UI Remote Code Execution via Insecure Deserialization
- CVE-2019-19781: Citrix Netscaler Path Traversal
- CVE-2019-20173: WordPress Plugin "Login by Auth0" (auth0) Reflected XSS
- CVE-2019-5418: Ruby on Rails Path Traversal
- CVE-2019-7859: Magento Path Traversal Vulnerability
- CVE-2020-11444: Nexus Repository Manager Unauthenticated RCE
- CVE-2020-11450: MicroStrategy Information Disclosure
- CVE-2020-11738: WordPress "Duplicator / WordPress Migration Plugin" (duplicator) Path Traversal
- CVE-2020-11946: Zoho ManageEngine OpManager Unauthenticated Access API Key Access leads to RCE
- CVE-2020-13167: Netsweeper Webadmin RCE
- CVE-2020-13662: Drupal Core Open Redirect
- CVE-2020-13924: Apache Ambari Authentication Bypass
- CVE-2020-14005: SolarWinds Orion RCE
- CVE-2020-15081: PrestaShop Information Exposure
- CVE-2020-15227: Nette RCE
- CVE-2020-23774: Winmail Reflected XSS
- CVE-2020-25540: ThinkAdmin 6 - Arbitrarily File Read
- CVE-2020-3019: Lanproxy LFI
- CVE-2020-3187: Cisco ASA/FTD Unauthenticated Arbitrary File Deletion
- CVE-2020-36288: Atlassian Jira Prototype Pollution XSS
- CVE-2020-7961: Liferay Portal Unauthenticated RCE
- CVE-2020-8163: Ruby on Rails RCE
- CVE-2021-21246: OneDev User Access Token Leak
- CVE-2021-22002: VMware SSRF
- CVE-2021-22122: Fortigate Fortiweb XSS
- CVE-2021-22874: Revive Adserver 5.1.0 Reflected XSS
- CVE-2021-22942: Open Redirect in RubyGems Action Pack
- CVE-2021-2400: Oracle EBS XXE
- CVE-2021-24073: Skype for Business processMessage XSS
- CVE-2021-24226: WordPress Plugin "AccessAlly" (access-ally) Environment Varibales Disclosure
- CVE-2021-24917: WordPress Plugin "WPS Hide Login" (wps-hide-login) Bypass
- CVE-2021-25008: WordPress Plugin "Code-Snippets" XSS
- CVE-2021-25074: WordPress Plugin "Converter for Media" (webp-converter-for-media) Open Redirect
- CVE-2021-25082: WordPress Plugin "Popup Builder" (popup-builder) Potential RCE
- CVE-2021-25281: Active SaltStack Authentication Bypass
- CVE-2021-26475: EPrints 3.4.2 XSS
- CVE-2021-26855: Microsoft Exchange SSRF
- CVE-2021-28073: Ntopng Authentication Bypass
- CVE-2021-32478: Moodle Reflected XSS
- CVE-2021-32789: WooCommerce SQL Injection
- CVE-2021-33564: Argument Injection in Ruby Dragonfly
- CVE-2021-3374: Rstudio Shiny Server Directory Traversal
- CVE-2021-34473: Microsoft Exchange Server Remote Code Execution
- CVE-2021-36394: Moodle RCE
- CVE-2021-36580: IceWarp Open Redirect
- CVE-2021-39226: Grafana Snapshot Authentication Bypass
- CVE-2021-40149: Reolink RSA Private Key Exposure
- CVE-2021-41349: Microsoft Exchange ASP.NET Request Validation XSS
- CVE-2021-42237: Possible RCE on Sitecore via Deprecated Endpoint
- CVE-2021-44228: Log4Shell (log4j) RCE
- CVE-2021-45046: Log4Shell (log4j) Bypass RCE
- CVE-2022-0188: Coming Soon & Maintenance Plugin by NiteoThemes < 4.0.19 - Unauthenticated Arbitrary CSS Update Vulnerability
- CVE-2022-1386: WordPress Plugin "Avada Theme" SSRF
- CVE-2022-21587: Oracle Oracle E-Business Suite RCE
- CVE-2022-22181: Juniper J-Web XSS Vulnerability
- CVE-2022-25377: Appwrite Local File Inclusion
- CVE-2022-2551: WordPress Plugin Duplicator < 1.4.7 - Unauthenticated Backup Download
- CVE-2022-25568: MotionEye Configuration File Leakage
- CVE-2022-26352: DotCMS Unrestricted File Upload
- CVE-2022-28987: Zoho ManageEngine ADSelfService User Enumeration
- CVE-2022-40684: Fortinet VPN Auth Bypass
- CVE-2023-20198: Cisco WebUI Compromised
- CVE-2023-22515: Atlassian Confluence Privilege Escalation
- CVE-2023-22527: atlassian confluence RCE
- CVE-2023-3368: Chamilo LMS <= v1.11.20 RCE
- CVE-2023-42793: TeamCity CI Authentication Bypass
- CVE-2023-44150: ProfilePress Sensitive Information Exposure
- CVE-2023-44353: Adobe ColdFusion WDDX Deserialization Gadgets
- CVE-2023-4668: Ad Inserter Unauthenticated Sensitive Information Exposure
- CVE-2023-49785: NextChat Reflected XSS
- CVE-2023-49785: NextChat SSRF
- CVE-2023-6063: WordPress Plugin "WP Fastest Cache" (wp-fastest-cache) SQL Injection
- CVE-2024-10783: WordPress Plugin "MainWP Child" (mainwp-child) Authentication Bypass
- CVE-2024-1183: Gradio Open Redirect
- CVE-2024-1709: ScreenConnect Authentication Bypass
- CVE-2024-22024: Ivanti Connect Secure and Policy Secure XXE
- CVE-2024-27199: TeamCity Authentication Bypass
- CVE-2024-29269: Telesquare RCE
- CVE-2024-29882: SRS DOM XSS
- CVE-2024-32399: RaidenMAILD LFI
- CVE-2024-32640: Mura CMS SQL Injection
- CVE-2024-34102: Adobe Commerce & Magento XXE
- CVE-2024-44000: WordPress Plugin "LiteSpeed Cache" Sensitive Information Exposure
- CVE-2024-4882: Sitefinity Open Redirect
- CVE-2024-50498: WordPress Plugin "WP Query Console" (wp-query-console) RCE
- InfluxDB API Exposure / Unauthenticated Access
- WordPress "Duplicator / WordPress Migration Plugin" (duplicator) Archive File Disclosure
- WordPress Arbitrary Shortcode Execution
- WordPress Plugin "All In One WP Security & Firewall" (all-in-one-wp-security-and-firewall) Open Redirect
- WordPress Plugin "Google Tag Manager for WordPress" (duracelltomi-google-tag-manager) XSS
Thanks for your feedback