Detections
Analytics

Plugins

As information about new vulnerabilities is discovered and released into the general public domain, Tenable Research designs programs to detect them. These programs are named plugins and are written in the Nessus Attack Scripting Language (NASL). The plugins contain vulnerability information, a simplified set of remediation actions and the algorithm to test for the presence of the security issue. Tenable Research has published 337359 plugins, covering 124146 CVE IDs and 30933 Bugtraq IDs.

RSS Feeds

Search

Newest

IDNameProductFamilySeverity
505525Tridium Niagara Use of GET Request Method With Sensitive Query Strings (CVE-2025-3943)Tenable OT SecurityTenable.ot
medium
505524Tridium Niagara Incorrect Permission Assignment for Critical Resource (CVE-2025-3944)Tenable OT SecurityTenable.ot
high
505523Tridium Niagara Improper Encoding or Escaping of Output (CVE-2025-3942)Tenable OT SecurityTenable.ot
medium
505522Tridium Niagara Use of Incorrectly-Resolved Name or Reference (CVE-2025-3941)Tenable OT SecurityTenable.ot
medium
505521Tridium Niagara Use of a Broken or Risky Cryptographic Algorithm (CVE-2025-3938)Tenable OT SecurityTenable.ot
medium
505520Tridium Niagara Use of Password Hash With Insufficient Computational Effort (CVE-2025-3937)Tenable OT SecurityTenable.ot
high
505519Tridium Niagara Observable Discrepancy (CVE-2025-3939)Tenable OT SecurityTenable.ot
medium
505518Tridium Niagara Incorrect Permission Assignment for Critical Resource (CVE-2025-3936)Tenable OT SecurityTenable.ot
medium
505517Tridium Niagara Argument Injection (CVE-2025-3945)Tenable OT SecurityTenable.ot
high
505516Tridium Niagara Improper Use of Validation Framework (CVE-2025-3940)Tenable OT SecurityTenable.ot
medium
322750GitLab 19.1 < 19.1.1 (CVE-2026-12053)NessusCGI abuses
high
322749GitLab 16.4 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-10086)NessusCGI abuses
high
322748GitLab 18.6 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-5309)NessusCGI abuses
medium
322747GitLab 17.9 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-0934)NessusCGI abuses
low
322746GitLab 14.8 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-1606)NessusCGI abuses
medium
322745GitLab 8.3 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-12635)NessusCGI abuses
critical
322744GitLab 13.6 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-5796)NessusCGI abuses
medium
322743GitLab 9.3 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-8330)NessusCGI abuses
medium
322742GitLab 17.5 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-2238)NessusCGI abuses
medium
322741GitLab 18.6 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-3176)NessusCGI abuses
low
322740GitLab 17.11 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-5952)NessusCGI abuses
medium
322739GitLab 13.11 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-11379)NessusCGI abuses
medium
322738GitLab 18.10 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-10712)NessusCGI abuses
high
322737Oracle Linux 8 : mysql:8.0 (ELSA-2026-25919)NessusOracle Linux Local Security Checks
medium
322736Oracle Linux 9 : fence-agents (ELSA-2026-26206)NessusOracle Linux Local Security Checks
high
322735Oracle Linux 9 : post (ELSA-2026-26205)NessusOracle Linux Local Security Checks
high
322734Oracle Linux 9 : webkit2gtk3 (ELSA-2026-25927)NessusOracle Linux Local Security Checks
high
322733Oracle Linux 8 : evince (ELSA-2026-28998)NessusOracle Linux Local Security Checks
high
322732RockyLinux 8 : libreoffice (RLSA-2026:28922)NessusRocky Linux Local Security Checks
medium
322731RockyLinux 9 : python3.14 (RLSA-2026:28247)NessusRocky Linux Local Security Checks
high
322730RockyLinux 9 : libxml2 (RLSA-2026:28254)NessusRocky Linux Local Security Checks
high
322729RockyLinux 8 : kernel-rt (RLSA-2026:27812)NessusRocky Linux Local Security Checks
high
322728RockyLinux 8 : firefox (RLSA-2026:27717)NessusRocky Linux Local Security Checks
critical
322727RockyLinux 8 : evince (RLSA-2026:28998)NessusRocky Linux Local Security Checks
high
322726RockyLinux 8 : vim (RLSA-2026:28553)NessusRocky Linux Local Security Checks
medium
322725RockyLinux 8 : kernel (RLSA-2026:27811)NessusRocky Linux Local Security Checks
high
322724RockyLinux 8 : tigervnc (RLSA-2026:28923)NessusRocky Linux Local Security Checks
high
322723ByteDance Trae Extensions Installed (Linux)NessusArtificial Intelligence
info
322722Linux Distros Unpatched Vulnerability : CVE-2026-53082NessusMisc.
critical
322721Linux Distros Unpatched Vulnerability : CVE-2026-52955NessusMisc.
critical
322720Linux Distros Unpatched Vulnerability : CVE-2026-53102NessusMisc.
critical
322719Linux Distros Unpatched Vulnerability : CVE-2026-53041NessusMisc.
critical
322718Linux Distros Unpatched Vulnerability : CVE-2026-53000NessusMisc.
critical
322717Linux Distros Unpatched Vulnerability : CVE-2026-53065NessusMisc.
critical
322716Linux Distros Unpatched Vulnerability : CVE-2026-56368NessusMisc.
medium
322715Linux Distros Unpatched Vulnerability : CVE-2026-52999NessusMisc.
critical
322714Linux Distros Unpatched Vulnerability : CVE-2026-52991NessusMisc.
critical
322713Linux Distros Unpatched Vulnerability : CVE-2026-53018NessusMisc.
critical
322712Linux Distros Unpatched Vulnerability : CVE-2026-53101NessusMisc.
critical
322711Linux Distros Unpatched Vulnerability : CVE-2026-53109NessusMisc.
critical

Updated

IDNameProductFamilySeverity
505515Schneider Electric Modicon M241, M251, and M262 Improper Resource Shutdown or Release (CVE-2025-13901)Tenable OT SecurityTenable.ot
medium
505514Automated Logic WebCTRL Cross-site Scripting (CVE-2024-5540)Tenable OT SecurityTenable.ot
medium
505513Vertiv Liebert SiteScan Cross-site Scripting (CVE-2024-5540)Tenable OT SecurityTenable.ot
medium
505512Automated Logic WebCTRL Storing Passwords in a Recoverable Format (CVE-2025-14295)Tenable OT SecurityTenable.ot
high
505511Carrier Corporation i-VU Improper Validation of Array Index (CVE-2025-0657)Tenable OT SecurityTenable.ot
high
505510Automated Logic WebCTRL Improper Validation of Array Index (CVE-2025-0657)Tenable OT SecurityTenable.ot
high
505509Vertiv Liebert SiteScan Improper Validation of Array Index (CVE-2025-0657)Tenable OT SecurityTenable.ot
high
505508Carrier Corporation i-VU Incorrect Authorization (CVE-2024-5539)Tenable OT SecurityTenable.ot
critical
505507Vertiv Liebert SiteScan Incorrect Authorization (CVE-2024-5539)Tenable OT SecurityTenable.ot
critical
505506Carrier Corporation i-VU Cross-site Scripting (CVE-2024-5540)Tenable OT SecurityTenable.ot
medium
505505Automated Logic WebCTRL Premium Server Improper Neutralization of Input During Web Page Generation (CVE-2024-8528)Tenable OT SecurityTenable.ot
medium
505504Automated Logic WebCTRL Premium Server Improper Neutralization of Input During Web Page Generation (CVE-2024-8528)Tenable OT SecurityTenable.ot
medium
505503Carrier Corporation i-VU Storing Passwords in a Recoverable Format (CVE-2025-14295)Tenable OT SecurityTenable.ot
high
505502Automated Logic WebCTRL Premium Server Improper Neutralization of Input During Web Page Generation (CVE-2024-8528)Tenable OT SecurityTenable.ot
medium
505501Automated Logic WebCTRL Incorrect Authorization (CVE-2024-5539)Tenable OT SecurityTenable.ot
critical
505500Automated Logic WebCTRL Premium Server URL Redirection to Untrusted Site (CVE-2024-8527)Tenable OT SecurityTenable.ot
high
505499Automated Logic WebCTRL Premium Server URL Redirection to Untrusted Site (CVE-2024-8527)Tenable OT SecurityTenable.ot
high
505498Automated Logic WebCTRL Premium Server URL Redirection to Untrusted Site (CVE-2024-8527)Tenable OT SecurityTenable.ot
high
322560Oracle Linux 9 : nginx:1.24 (ELSA-2026-19371)NessusOracle Linux Local Security Checks
critical
322540RockyLinux 8 : postgresql:12 (RLSA-2026:28999)NessusRocky Linux Local Security Checks
high
322536Linux Distros Unpatched Vulnerability : CVE-2026-52923NessusMisc.
medium
322533Linux Distros Unpatched Vulnerability : CVE-2026-52927NessusMisc.
high
322527Linux Distros Unpatched Vulnerability : CVE-2026-52930NessusMisc.
high
322524Linux Distros Unpatched Vulnerability : CVE-2026-52929NessusMisc.
medium
322520Linux Distros Unpatched Vulnerability : CVE-2026-52912NessusMisc.
high
322515Linux Distros Unpatched Vulnerability : CVE-2026-52924NessusMisc.
medium
322511Linux Distros Unpatched Vulnerability : CVE-2026-52925NessusMisc.
high
322507Linux Distros Unpatched Vulnerability : CVE-2026-52928NessusMisc.
medium
322483Tenable Identity Exposure < 3.93.5 Multiple Vulnerabilities (TNS-2026-16)NessusMisc.
high
322479Ubuntu 22.04 LTS / 24.04 LTS : libxml2 vulnerability (USN-8456-1)NessusUbuntu Local Security Checks
high
322472Linux Distros Unpatched Vulnerability : CVE-2025-71382NessusMisc.
medium
322466Linux Distros Unpatched Vulnerability : CVE-2026-9595NessusMisc.
medium
322456Linux Distros Unpatched Vulnerability : CVE-2025-55639NessusMisc.
medium
322421pgAdmin < 9.16 HTML Injection (CVE-2026-12047)NessusDatabases
medium
322420pgAdmin < 9.16 Multiple SQL InjectionsNessusDatabases
high
322419pgAdmin < 9.16 Stored XSS / Open RedirectNessusDatabases
critical
322418pgAdmin 9.x < 9.16 Read-Only Transaction Bypass (CVE-2026-12045)NessusDatabases
critical
322417pgAdmin < 9.16 Missing Authentication (CVE-2026-12046)NessusDatabases
critical
322415JetBrains GoLand < 2026.1.3 RCENessusMisc.
high
322412Adobe ColdFusion < 2023.x < 2023u20 / 2025.x < 2025u9 Multiple Vulnerabilities (APSB26-64)NessusWindows
critical
322411Zimbra Collaboration Server < 8.8.15 Patch 7 Server-Side Request Forgery VulnerabilityNessusCGI abuses
critical
322410Node.js Module Undici 8.1.x < 8.5.0 DoS (CVE-2026-9675)NessusMisc.
high
322409Node.js Module Undici 6.17.x < 6.27.0 / 7.x < 7.28.0 / 8.x < 8.5.0 DoS (CVE-2026-12151)NessusMisc.
high
322408Containerd 2.1.x < 2.1.9 / 2.2.x < 2.2.5 / 2.3.x < 2.3.2 Multiple VulnerabilitiesNessusMisc.
critical
322407Containerd 1.7.x < 1.7.33 / 2.0.x < 2.0.10 / 2.1.x < 2.1.9 / 2.2.x < 2.2.5 / 2.3.x < 2.3.2 Multiple VulnerabilitiesNessusMisc.
critical
322406Debian dla-4644 : libmatio-dev - security updateNessusDebian Local Security Checks
medium
322403RHEL 9 : libreoffice (RHSA-2026:28290)NessusRed Hat Local Security Checks
medium
322402RHEL 8 : libreoffice (RHSA-2026:28922)NessusRed Hat Local Security Checks
medium
322376RockyLinux 8 : nginx:1.24 (RLSA-2026:28921)NessusRocky Linux Local Security Checks
critical
322363Photon OS 4.0: Rsync PHSA-2026-4.0-1038NessusPhotonOS Local Security Checks
high