Plugins
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Severity
VPR
CVSS v2
CVSS v3
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Severity
VPR
CVSS v2
CVSS v3
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Plugins
Web App Scanning Release Notes
202402020754
Web App Scanning Release Notes
was Plugin Feed 202402020754
Feb 2, 2024, 7:54 AM
Modified Detection
112290
Apache Tomcat 9.0.0.M1 < 9.0.10 Multiple Vulnerabilities
112295
Apache Tomcat 9.0.0.M1 < 9.0.0.M22 Multiple Vulnerabilities
112526
Missing 'X-XSS-Protection' Header
112527
Disabled 'X-XSS-Protection' Header
112529
Missing 'X-Content-Type-Options' Header
112535
HTTP Strict Transport Security Policy Detected
112543
HTTPS Not Detected
112544
HTTP to HTTPS Redirect Not Enabled
112551
Missing Content Security Policy
112552
Deprecated Content Security Policy
112553
Missing 'Cache-Control' Header
112554
Permissive Content Security Policy Detected
112555
Report Only Content Security Policy Detected
112569
OpenAPI Import Success
112570
OpenAPI Import Failed
112614
Server-Side Template Injection
112697
JSON Web Token Weak Secret
112705
Oracle WebLogic 10.3.6.0.0 / 12.1.3.0.0 / 12.2.1.4.0 / 14.1.1.0.0 Authentication Bypass
113010
API Key Authentication Succeeded
113011
API Key Authentication Failed
113012
Bearer Token Authentication Succeeded
113013
Bearer Token Authentication Failed
113075
Apache Log4j Remote Code Execution (Log4Shell)
113078
AngularJS Unsupported Version
113117
Magento Administration Panel Login Form Bruteforced
113136
Wordpress Administration Panel Login Form Bruteforced
113158
Package Dependencies Detected
113162
MySQLjs SQL Injection Authentication Bypass
113165
Apache mod_negotiation Alternative Filename Disclosure
113168
Docker Compose Configuration Detected
113211
HTTP Verb Tampering
113237
PHP Object Deserialization
113310
Blind XPath Injection (differential analysis)
113333
Duplicate HTTP Headers Detected
113337
NoSQL Injection Authentication Bypass
113452
WordPress Plugins Detected
113580
Web Cache Deception
113900
Cross-Site Request Forgery Token Validation Bypass
113973
Web Services Description Language (WSDL) File Detected
114006
Web Cache Poisoning Denial of Service
114027
WP Fastest Cache Plugin for WordPress < 1.1.3 Multiple Vulnerabilities
114041
Strapi Cognito Provider Authentication Bypass
114042
Adobe ColdFusion Remote Code Execution
114043
Adobe ColdFusion Improper Access Control
114108
Strapi < 4.8.0 Private Fields Sensitive Information Disclosure
114122
Appwrite Server-Side Request Forgery
114129
Secret Data Disclosure
114134
HTML/CSS Injection
114145
Apache OFBiz Authentication Bypass
114164
Stripe Payment Plugin for WooCommerce Plugin for WordPress < 3.8.0 SQL Injection
114166
SOAP API Detected
98008
Web Application Firewall Detected
98034
Login Form Authentication Failed
98035
Login Form Authentication Succeeded
98047
Allowed HTTP Methods
98056
Missing HTTP Strict Transport Security Policy
98057
Insecure 'Access-Control-Allow-Origin' Header
98060
Missing 'X-Frame-Options' Header
98067
Insecure Cross-Domain Policy (allow-access-from)
98068
Insecure Cross-Domain Policy (allow-http-request-headers-from)
98084
Directory Listing
98095
Misconfiguration in LIMIT directive of .htaccess file
98097
Backdoor Detection
98107
Cross-Site Scripting (XSS) in path
98112
Cross-Site Request Forgery
98115
SQL Injection
98117
Blind SQL Injection (differential analysis)
98119
Blind NoSQL Injection (differential analysis)
98123
Operating System Command Injection
98136
Target Information
98139
Cookie Authentication Succeeded
98140
Cookie Authentication Failed
98141
Selenium Authentication Succeeded
98142
Selenium Authentication Failed
98143
Selenium Crawl Succeeded
98145
Selenium Crawl Failed
98200
Drupal Administration Panel Login Form Detected
98526
Missing Permissions Policy
98527
Missing Referrer Policy
98607
Ultimate Member Plugin for WordPress < 2.0.46 Multiple Vulnerabilities
98618
HTTP Header Information Disclosure
98642
Magento Administration Panel Login Form Detected
98648
Missing 'Content-Type' Header
98715
Permissive HTTP Strict Transport Security Policy Detected
New
114162
XSLT Injection
114163
Fortra GoAnywhere MFT 6.x > 6.0.1 / 7.x < 7.4.1 Authentication Bypass
114165
Ivanti Connect Secure 9.x / 22.x Authentication Bypass
114167
gRPC Detected
114168
Jenkins < 2.442 / < LTS 2.426.3 Arbitrary File Read
114169
Google Extensible Service Proxy 2.20.0 < 2.43.0 Authentication Bypass
114170
WordPress 4.1.x < 4.1.40 Multiple Vulnerabilities
114171
WordPress 4.2.x < 4.2.37 Multiple Vulnerabilities
114172
WordPress 4.3.x < 4.3.33 Multiple Vulnerabilities
114173
WordPress 4.4.x < 4.4.32 Multiple Vulnerabilities
114174
WordPress 4.5.x < 4.5.31 Multiple Vulnerabilities
114175
WordPress 4.6.x < 4.6.28 Multiple Vulnerabilities
114176
WordPress 4.7.x < 4.7.28 Multiple Vulnerabilities
114177
WordPress 4.8.x < 4.8.24 Multiple Vulnerabilities
114178
WordPress 4.9.x < 4.9.25 Multiple Vulnerabilities
114179
WordPress 5.0.x < 5.0.21 Multiple Vulnerabilities
114180
WordPress 5.1.x < 5.1.18 Multiple Vulnerabilities
114181
WordPress 5.2.x < 5.2.20 Multiple Vulnerabilities
114182
WordPress 5.3.x < 5.3.17 Multiple Vulnerabilities
114183
WordPress 5.4.x < 5.4.15 Multiple Vulnerabilities
114184
WordPress 5.5.x < 5.5.14 Multiple Vulnerabilities
114185
WordPress 5.6.x < 5.6.13 Multiple Vulnerabilities
114186
WordPress 5.7.x < 5.7.11 Multiple Vulnerabilities
114187
WordPress 5.8.x < 5.8.9 Multiple Vulnerabilities
114188
WordPress 5.9.x < 5.9.9 Multiple Vulnerabilities
114189
WordPress 6.0.x < 6.0.7 Multiple Vulnerabilities
114190
WordPress 6.1.x < 6.1.5 Multiple Vulnerabilities
114191
WordPress 6.2.x < 6.2.4 Multiple Vulnerabilities
114192
WordPress 6.3.x < 6.3.3 Multiple Vulnerabilities
114193
WordPress 6.4.x < 6.4.3 Multiple Vulnerabilities
114194
Express.js Authentication Bypass
114195
Web Server Configuration File Detected