Plugins

As information about new vulnerabilities is discovered and released into the general public domain, Tenable Research designs programs to detect them. These programs are named plugins and are written in the Nessus Attack Scripting Language (NASL). The plugins contain vulnerability information, a simplified set of remediation actions and the algorithm to test for the presence of the security issue. Tenable Research has published 256278 plugins, covering 101181 CVE IDs and 30943 Bugtraq IDs.

Search

Newest

IDNameProductFamilySeverity
503285Mitsubishi Electric MELSEC iQ-F Series Improper Validation of Specified Index, Position, or Offset in Input (CVE-2025-3755)Tenable OT SecurityTenable.ot
critical
241692GitLab 18.0 < 18.0.4 / 18.1 < 18.1.2 (CVE-2025-4972)NessusCGI abuses
low
241691GitLab 13.3 < 17.11.6 / 18.0 < 18.0.4 / 18.1 < 18.1.2 (CVE-2025-3396)NessusCGI abuses
medium
241690GitLab 17.11 < 17.11.6 / 18.0 < 18.0.4 / 18.1 < 18.1.2 (CVE-2025-6948)NessusCGI abuses
high
241689GitLab 18.0 < 18.0.4 / 18.1 < 18.1.2 (CVE-2025-6168)NessusCGI abuses
low
241688Oracle Linux 8 : libxml2 (ELSA-2025-10698)NessusOracle Linux Local Security Checks
critical
241687Oracle Linux 8 : kernel (ELSA-2025-10669)NessusOracle Linux Local Security Checks
high
241686Oracle Linux 8 : gnome-remote-desktop (ELSA-2025-10742)NessusOracle Linux Local Security Checks
high
241685RHEL 8 : kernel (RHSA-2025:10761)NessusRed Hat Local Security Checks
high
241684RHEL 8 : OpenShift Container Platform 4.12.78 (RHSA-2025:10271)NessusRed Hat Local Security Checks
critical

Updated

IDNameProductFamilySeverity
241649mySCADA PRO Manager Missing Authentication (CVE-2025-24865)NessusSCADA
critical
241642Cisco Secure Endpoint Connector Installed (Linux)NessusMisc.
info
241641NorthGrid Proself XXE (CVE-2023-45727)NessusMisc.
high
241609Photon OS 5.0: Python3 PHSA-2025-5.0-0554NessusPhotonOS Local Security Checks
critical
241540Microsoft Azure Monitor Agent Installed (Windows)NessusWindows
info
241531Fortinet Fortigate DNS type 65 resource record requests bypass DNS filter (FG-IR-24-053)NessusFirewalls
medium
241530Fortinet Fortigate PKI via API: Authentication granted with an invalid certificate (FG-IR-24-511)NessusFirewalls
high
241438IBM App Connect Enterprise (ACE) Detection (Windows)NessusWindows
info
241429D-Link DIR-820 Devices Command Injection (CVE-2023-25280)NessusCGI abuses
critical
241327Streamline NX Client (XSS) (2025-000008)NessusWindows
medium