2020年11月签名更新
对于在2020-11-10周内识别的漏洞,将生成新的签名规则。您可以下载并配置这些签名规则,以保护您的设备免受安全漏洞攻击。
签名版本
签名版本53适用于NetScaler VPX 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0平台。
笔记
启用Post body和Response body签名规则可能会影响Citrix ADC CPU。
常见漏洞入口(CVE)洞察
下面列出了签名规则、CVE id及其描述信息。
签名的规则 | CVE ID | 描述 |
---|---|---|
999411 | WEB-WORDPRESS WordPress插件wpDiscuz 7.0.0 - 7.0.4 -未经认证的任意文件上传漏洞 | |
999412 | WEB-WORDPRESS Quiz & Survey Master - crosssite scripting Vulnerability in Questions Feature | |
999413 | 6.9之前的WEB-WORDPRESS插件文件管理器-未经验证的elFinder命令执行漏洞 | |
999414 | CVE-2020-11700 | WEB-MISC Titan SpamTitan Prior To 7.08 -信息泄露漏洞(CVE-2020-11700) |
999415 | cve - 2020 - 9446 | WEB-MISC Apache OFBiz 17.12.03 - XML-RPC不安全反序列化漏洞(CVE-2020-9446) |
999416 | cve - 2020 - 9446 | WEB-MISC Apache OFBiz 17.12.03 - XML-RPC跨站脚本漏洞(CVE-2020-9446) |
999417 | cve - 2020 - 9047 | WEB-MISC exacqVision WEB服务20.06.3.0之前-操作系统命令注入漏洞(CVE-2020-9047) |
999418 | cve - 2020 - 8866 | WEB-MISC Horde群件Webmail Edition 5.2.22-通过edit.php(CVE-2020-8866)不受限制地上传文件漏洞 |
999419 | cve - 2020 - 8866 | WEB-MISC Horde群件Webmail Edition 5.2.22-通过add.php(CVE-2020-8866)不受限制地上传文件漏洞 |
999420 | cve - 2020 - 8865 | WEB-MISC Horde群件Webmail Edition 5.2.22-通过edit.php(CVE-2020-8865)存在任意文件包含漏洞 |
999421 | CVE-2020-8816 | 4.3.2 -远程代码执行漏洞(CVE-2020-8816) |
999422 | CVE-2020-8816 | 4.3.2 -通过AddMAC漏洞获取远程代码执行漏洞(CVE-2020-8816) |
999423 | cve - 2020 - 8243 | -远程代码执行漏洞(CVE-2020-8243) |
999424 | cve - 2020 - 8218 | 9.1R8之前的WEB-MISC Pulse Connect安全-远程代码执行漏洞(CVE-2020-8218) |
999425 | cve cve - 2020 - 6143 - 2020 - 6144 | WEB-MISC OS4Ed OpenSIS-通过/install/Ins1.php的代码注入漏洞(CVE-2020-6143,CVE-2020-6144) |
999426 | cve - 2020 - 6142 | WEB-MISC OS4Ed OpenSIS -通过modname路径遍传漏洞(CVE-2020-6142) |
999427 | cve - 2020 - 6141 | 7.4之前的WEB-MISC OS4Ed OpenSIS-未经验证的通过用户名的SQLi漏洞(CVE-2020-6141) |
999428 | cve - 2020 - 6140 | WEB-MISC OS4Ed OpenSIS Prior to 7.5 - Unauthenticated SQLi漏洞(CVE-2020-6140) |
999429 | cve - 2020 - 6139 | WEB-MISC OS4Ed OpenSIS Prior 7.5 - Unauthenticated SQLi Vulnerability Via username_stf_email (CVE-2020-6139) |
999430 | cve - 2020 - 6138 | WEB-MISC OS4Ed OpenSIS Prior to 7.5 - Unauthenticated SQLi漏洞(CVE-2020-6138) |
999431 | cve - 2020 - 6137 | WEB-MISC OS4Ed OpenSIS Prior to 7.5 -未经认证的SQLi漏洞(CVE-2020-6137) |
999432 | cve - 2020 - 6125 | WEB-MISC OS4Ed OpenSIS 7.5之前版本-通过GetSchool.php和u参数(CVE-2020-6125)的SQLi漏洞 |
999433 | cve - 2020 - 6124 | WEB-MISC OS4Ed OpenSIS Prior to 7.5 - SQLi漏洞(CVE-2020-6124) |
999434 | cve - 2020 - 6123 | WEB-MISC OS4Ed OpenSIS Prior to 7.5 - SQLi漏洞 |
999435 | cve - 2020 - 6123 | WEB-MISC OS4Ed OpenSIS 7.5之前版本-通过EmailCheck.php和电子邮件参数(CVE-2020-6123)的SQLi漏洞 |
999436 | cve - 2020 - 6122 | WEB-MISC OS4Ed OpenSIS Prior 7.5 - SQLi漏洞(CVE-2020-6122) |
999437 | cve - 2020 - 6121 | WEB-MISC OS4Ed OpenSIS Prior 7.5 - SQLi漏洞(CVE-2020-6121) |
999438 | cve - 2020 - 6120 | 通过checkduplicatstudent .php和fn参数漏洞(CVE-2020-6120) |
999439 | cve - 2020 - 6119 | 通过checkduplicatstudent .php和byear参数漏洞(CVE-2020-6119) |
999440 | cve - 2020 - 6118 | WEB-MISC OS4Ed OpenSIS 7.5之前版本-通过CheckDuplicateStudent.php和bmonth参数(CVE-2020-6118)的SQLi漏洞 |
999441 | cve - 2020 - 6117 | WEB-MISC OS4Ed OpenSIS 7.5之前版本-通过CheckDuplicateStudent.php和bday参数(CVE-2020-6117)的SQLi漏洞 |
999442 | CVE-2020-5780 | 4.5.6之前的WEB-WORDPRESS WORDPRESS插件电子邮件订户和新闻稿-电子邮件伪造漏洞(CVE-2020-5780) |
999443 | cve - 2020 - 4280 | WEB-MISC IBM QRadar SIEM 7.3和7.4-通过JSON-RPC的不安全Java反序列化漏洞(CVE-2020-4280) |
999444 | cve - 2020 - 4280 | WEB-MISC IBM QRadar SIEM 7.3 and 7.4 - Insecure Java反序列化漏洞(CVE-2020-4280) |
999445 | cve - 2020 - 4280 | WEB-MISC IBM QRadar SIEM 7.3 and 7.4 - Insecure Java反序列化漏洞(CVE-2020-4280) |
999446 | cve - 2020 - 4280 | WEB-MISC IBM QRadar SIEM 7.3和7.4-通过JSON-RPC的不安全Java反序列化漏洞(CVE-2020-4280) |
999447 | cve - 2020 - 4280 | WEB-MISC IBM QRadar SIEM 7.3 and 7.4 - Insecure Java反序列化漏洞(CVE-2020-4280) |
999448 | cve - 2020 - 4280 | WEB-MISC IBM QRadar SIEM 7.3 and 7.4 - Insecure Java反序列化漏洞(CVE-2020-4280) |
999449 | cve - 2020 - 24786 | WEB-MISC Zoho ManageEngine ADManager Plus 7.0 Prior to Build 55 -不恰当身份验证漏洞(CVE-2020-24786) |
999450 | cve - 2020 - 24389 | WEB-WORDPRESS拖放多文件上传插件-安全绕过漏洞(CVE-2020-24389) |
999451 | cve - 2020 - 24046 | WEB-MISC TitanHQ SpamTitan Gateway 7.08 -权限升级漏洞(CVE-2020-24046) |
999452 | cve - 2020 - 17506 | 4.30.000000 -通过Apikey参数的PreAuth SQL注入漏洞(CVE-2020-17506) |
999453 | cve - 2020 - 17505 | 4.30.000000 -通过service - cds -peform参数的OS命令注入漏洞(CVE-2020-17505) |
999454 | CVE-2020-17463 | WEB-MISC Fuel CMS 1.4.8 - SQLi漏洞(CVE-2020-17463) |
999455 | CVE-2020-17463 | WEB-MISC Fuel CMS 1.4.8-通过/Fuel/sitevariables/items的SQLi漏洞(CVE-2020-17463) |
999456 | CVE-2020-17463 | WEB-MISC Fuel CMS 1.4.8 - SQLi漏洞Via / Fuel /permissions/items (CVE-2020-17463) |
999457 | CVE-2020-17463 | WEB-MISC Fuel CMS 1.4.8 - SQLi漏洞Via / Fuel /pages/items (CVE-2020-17463) |
999458 | CVE-2020-17463 | WEB-MISC Fuel CMS 1.4.8 - SQLi漏洞Via / Fuel /navigation/items (CVE-2020-17463) |
999459 | CVE-2020-17463 | WEB-MISC Fuel CMS 1.4.8 - SQLi漏洞Via / Fuel /logs/items (CVE-2020-17463) |
999460 | CVE-2020-17463 | WEB-MISC Fuel CMS 1.4.8 - SQLi漏洞Via / Fuel /blocks/items (CVE-2020-17463) |
999461 | cve - 2020 - 16875 | WEB-MISC Microsoft Exchange Server-DLP策略远程代码执行漏洞(CVE-2020-16875) |
999462 | CVE-2020-16171 | WEB-MISC Acronis Cyber Backup Prior To 12.5 Build 16342 - SSRF Via Shard Header漏洞(CVE-2020-16171) |
999463 | cve - 2020 - 14947 | -通过SNMP_MIB_DIRECTORY的OS命令注入漏洞(CVE-2020-14947) |
999464 | cve - 2020 - 14947 | 2.8版本之前的WEB-MISC OCS清单-通过mib_文件(CVE-2020-14947)的操作系统命令注入漏洞 |
999465 | cve - 2020 - 14008 | WEB-MISC Zoho ManageEngine Applications Manager Up To 14710 -远程代码执行漏洞(CVE-2020-14008) |
999466 | cve - 2020 - 13925 | WEB-MISC Apache Kylin Prior 3.1.0 -通过作业远程代码执行漏洞(CVE-2020-13925) |
999467 | cve - 2020 - 13925 | WEB-MISC Apache Kylin Prior 3.1.0 -远程代码执行漏洞(CVE-2020-13925) |
999468 | cve - 2020 - 13854 | WEB-MISC Artica Pandora FMS -权限升级漏洞(CVE-2020-13854) |
999469 | cve - 2020 - 13405 | WEB-MISC Microweber Prior to 1.1.20 -未经认证的信息泄露漏洞(CVE-2020-13405) |
999470 | cve - 2020 - 13376 | WEB-MISC SecurEnvoy SecurMail 9.3.503 - SecurEnvoyReply Cookie路径遍历漏洞(CVE-2020-13376) |
999471 | cve - 2020 - 13159 | 4.30.000000之前的Web - OS命令注入漏洞(CVE-2020-13159) |
999472 | cve - 2020 - 13159 | WEB-MISC Artica 4.30.000000之前的WEB代理-通过netbiosname的操作系统命令注入漏洞(CVE-2020-13159) |
999473 | cve - 2020 - 13159 | Web - misc Artica Web Proxy Prior to 4.30.000000 - OS命令注入漏洞(CVE-2020-13159) |
999474 | cve - 2020 - 13159 | WEB-MISC Artica 4.30.000000之前的WEB代理-通过主机名的操作系统命令注入漏洞(CVE-2020-13159) |
999475 | cve - 2020 - 13159 | 4.30.000000之前的WEB-MISC Artica WEB代理-通过dhclient_服务器(CVE-2020-13159)的操作系统命令注入漏洞 |
999476 | cve - 2020 - 13159 | Web - misc Artica Web Proxy Prior to 4.30.000000 - OS Command Injection Vulnerability Via dhclient_interface (CVE-2020-13159) |
999477 | cve - 2020 - 13159 | -通过dhclient_mac的OS命令注入漏洞(CVE-2020-13159) |
999478 | cve - 2020 - 13158 | Web - misc Artica Web Proxy Prior to 4.30.000000 -路径遍历漏洞(CVE-2020-13158) |
999479 | cve - 2020 - 12851 | WEB-MISC Pydio Cells Prior 2.0.7 -任意文件写入漏洞(CVE-2020-12851) |
999480 | cve - 2020 - 12848 | WEB-MISC Pydio Cells Prior to 2.0.7 - Login as Temporary Shared User漏洞(CVE-2020-12848) |
999481 | cve - 2020 - 11699 | WEB-MISC Titan SpamTitan Prior 7.08 -远程代码执行漏洞(CVE-2020-11699) |
999482 | cve - 2020 - 11579 | WEB-MISC PHPKBV9 -文件外泄漏洞(CVE-2020-11579) |
999483 | CVE-2020-10818 | 4.26 - OS命令注入漏洞Via fw.system.info (CVE-2020-10818) |
999484 | cve - 2020 - 10228 | WEB-MISC Vtenext CE previous Version 20- free Upload of File with Dangerous Type漏洞(CVE-2020-10228) |
999485 | cve - 2020 - 10204 | 3.21.2之前的WEB-MISC Sonatype Nexus Repository Manager-通过coreui_用户角色的RCE漏洞(CVE-2020-10204) |
999486 | cve - 2020 - 10204 | 3.21.2 -通过corei_role权限漏洞(CVE-2020-10204) |
999487 | cve - 2020 - 10204 | 3.21.2 -通过corei_role角色漏洞(CVE-2020-10204) |
999488 | cve - 2020 - 10199 | 3.21.2 -通过REST端点/bower/group漏洞(CVE-2020-10199) |
999489 | cve - 2020 - 10199 | 3.21.2 - RCE漏洞Via REST Endpoint /go/group (CVE-2020-10199) |
999490 | cve - 2020 - 10199 | 3.21.2之前的WEB-MISC Sonatype Nexus Repository Manager-通过REST端点/docker/group(CVE-2020-10199)的RCE漏洞 |
999491 | cve - 2019 - 19699 | WEB-MISC Centreon漏洞(CVE-2019-19699) |
999492 | cve - 2019 - 19499 | WEB-MISC Apache Grafana升至6.4.3 -任意文件读取漏洞(CVE-2019-19499) |
999493 | cve - 2019 - 18394 | WEB-MISC Ignite Realtime Openfire Up 4.4.2 - FaviconServlet Server Side Request伪造漏洞(CVE-2019-18394) |
999494 | cve - 2019 - 18393 | WEB-MISC Ignite Realtime Openfire漏洞高达4.4.2 - plug-inServlet目录遍历漏洞(CVE-2019-18393) |
999495 | cve - 2019 - 16759 | 5.6.2之前的WEB-MISC vBulletin-通过嵌套模板的远程代码执行漏洞(CVE-2019-16759) |
999496 | cve - 2019 - 15715 | WEB-MISC MantisBT 1.3.20和2.22.1之前版本-通过neato_工具(CVE-2019-15715)远程代码执行漏洞 |
999497 | cve - 2019 - 15715 | WEB-MISC MantisBT之前的1.3.20和2.22.1 -远程代码执行漏洞(CVE-2019-15715) |
999498 | cve - 2019 - 11043 | WEB-MISC PHP-FPM Multiple Versions - out - bounds Write Vulnerability Allows Arbitrary Code Execution (CVE-2019-11043) |
999499 | WEB-WORDPRESS插件Autoptimize高达2.7.6 -认证任意文件上传漏洞 |
2020年11月签名更新
复制!
失败!