📦

web_server_plugin

Vendor: nessus

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 4 Total Indexed

Avg. EPSS 0.24% Exploit Prob.

Latest CVE CVE-2010-2989 Aug 10

Security Vulnerability Index

Page 1 / 1

5.0 CVSS

CVE-2010-2989

nessusd_www_server.nbin in the Nessus Web Server plugin 1.2.4 for Nessus allows remote attackers to obtain sensitive information via a request to the /feed method, which reveals the version in a response.

EPSS: 0.23%

Severity: MEDIUM

Aug 10, 2010

4.3 CVSS

CVE-2010-2914

Cross-site scripting (XSS) vulnerability in nessusd_www_server.nbin in the Nessus Web Server plugin 1.2.4 for Nessus allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

EPSS: 0.26%

Severity: MEDIUM

Jul 30, 2010

Displaying 2 of 4 Total Entries

Total 1 Sections