CyberAlerts

Description: Web App Scanning Plugin ID 114617 with Info Severity Synopsis GitLab Public Projects Detected Description This is an informational notice that the scanner was able to detect public projects on the target GitLab instance. Solution Ensure that the public permissions applied on the detected project are expected. Read more at https://www.tenable.com/plugins/was/114617

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

GiveWP Plugin for WordPress < 3.20.0 Remote Code Execution

Description: Web App Scanning Plugin ID 114618 with Critical Severity Synopsis GiveWP Plugin for WordPress < 3.20.0 Remote Code Execution Description The WordPress GiveWP Plugin installed on the remote host is affected by a PHP object injection vulnerability.Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. Solution Upgrade to GiveWP Plugin for WordPress 3.20.0 or latest. Read more at https://www.tenable.com/plugins/was/114618

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

GitLab Public Snippets Detected

Description: Web App Scanning Plugin ID 114619 with Info Severity Synopsis GitLab Public Snippets Detected Description This is an informational notice that the scanner was able to detect public snippets on the target GitLab instance. Solution Ensure that the public permissions applied on the detected snippets are expected. Read more at https://www.tenable.com/plugins/was/114619

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

RustDesk Console Detected

Description: Web App Scanning Plugin ID 114620 with Medium Severity Synopsis RustDesk Console Detected Description RustDesk is a mote access and control software that enables management of computers and other devices. RustDesk server Pro embeds a web console allowing users to browse devices and perform configuration modification on the application. By leveraging this, a remote and unauthenticated attacker could use some techniques, such as a Brute-Force or Dictionary Attack, in order to gain access to administrative functionality.Note that this detection is included in the Remote Access Tools category. Solution Restrict access to administrative functionality using, for example, a .htaccess file and limiting access to known IP Addresses. Read more at https://www.tenable.com/plugins/was/114620

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

Docker Public Registry Detected

Description: Web App Scanning Plugin ID 114621 with Info Severity Synopsis Docker Public Registry Detected Description This is an informational notice that the scanner was able to detect a public Docker registry instance. Solution Ensure that the public permissions applied on the detected registry are expected. Read more at https://www.tenable.com/plugins/was/114621

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

LiteLLM Detected

Description: Web App Scanning Plugin ID 114622 with Info Severity Synopsis LiteLLM Detected Description This is an informational plugin to inform the user that the scanner has detected a publicly accessible LiteLLM instance on the target application. LiteLLM is a LLM Gateway to provide model access in the OpenAI format. This detection is included in the AI and LLM category. Solution If the application is not expected to be public, restrict access using a .htaccess file, limiting access to known IP Addresses. Read more at https://www.tenable.com/plugins/was/114622

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

LiteLLM < 1.48.18 Server-Side Request Forgery

Description: Web App Scanning Plugin ID 114623 with High Severity Synopsis LiteLLM < 1.48.18 Server-Side Request Forgery Description According to its self-reported version, the instance of LiteLLM running on the remote web server is prior to 1.48.18. It is, therefore, affected by a Server-Side Request Forgery vulnerability in the chat completion.Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. Solution Upgrade to LiteLLM version 1.48.18 or later. Read more at https://www.tenable.com/plugins/was/114623

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

RustDesk Console Default Credentials

Description: Web App Scanning Plugin ID 114624 with Critical Severity Synopsis RustDesk Console Default Credentials Description RustDesk is a mote access and control software that enables management of computers and other devices. RustDesk server Pro embeds a web console allowing users to browse devices and perform configuration modification on the application. A remote and unauthenticated attacker can use the default `admin/test1234` credentials in order to gain access to administrative functionality.Note that this detection is included in the Remote Access Tools category. Solution The application should not be configured with accounts using default or predictable credentials. A complex password policy should be defined and enforced on every account available in the application to prevent attackers from guessing it and have unauthorized access to the application. Read more at https://www.tenable.com/plugins/was/114624

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

LiteLLM Default Credentials

Description: Web App Scanning Plugin ID 114625 with Critical Severity Synopsis LiteLLM Default Credentials Description LiteLLM applies an authentication system with credentials that could have been suggested from the documentation. If these credentials are not modified, an attacker could access LiteLLM's interface and perform arbitrary actions. This detection is included in the AI and LLM category. Solution The application should not be configured with accounts using default or predictable credentials. A complex password policy should be defined and enforced on every account available in the application to prevent attackers from guessing it and have unauthorized access to the application. Read more at https://www.tenable.com/plugins/was/114625

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

RustDesk API Admin Detected

Description: Web App Scanning Plugin ID 114626 with Medium Severity Synopsis RustDesk API Admin Detected Description RustDesk is a remote access and control software that enables management of computers and other devices. RustDesk API Admin is a RESTful API allowing automation and integration of RustDesk functionality into other systems. By levegaring this service, a remote and unauthenticated attacker could use some techniques, such as a Brute-Force or Dictionary Attack, in order to gain access to administrative functionality.Note that this detection is included in the Remote Access Tools category. Solution Restrict access to administrative functionality using, for example, a .htaccess file and limiting access to known IP Addresses. Read more at https://www.tenable.com/plugins/was/114626

Source: Tenable Plugins

March 11th, 2025 (4 months ago)

Threat and Vulnerability Intelligence Database

Example Searches:

	GitLab Public Projects Detected Description: Web App Scanning Plugin ID 114617 with Info Severity Synopsis GitLab Public Projects Detected Description This is an informational notice that the scanner was able to detect public projects on the target GitLab instance. Solution Ensure that the public permissions applied on the detected project are expected. Read more at https://www.tenable.com/plugins/was/114617 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	GiveWP Plugin for WordPress < 3.20.0 Remote Code Execution Description: Web App Scanning Plugin ID 114618 with Critical Severity Synopsis GiveWP Plugin for WordPress < 3.20.0 Remote Code Execution Description The WordPress GiveWP Plugin installed on the remote host is affected by a PHP object injection vulnerability.Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. Solution Upgrade to GiveWP Plugin for WordPress 3.20.0 or latest. Read more at https://www.tenable.com/plugins/was/114618 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	GitLab Public Snippets Detected Description: Web App Scanning Plugin ID 114619 with Info Severity Synopsis GitLab Public Snippets Detected Description This is an informational notice that the scanner was able to detect public snippets on the target GitLab instance. Solution Ensure that the public permissions applied on the detected snippets are expected. Read more at https://www.tenable.com/plugins/was/114619 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	RustDesk Console Detected Description: Web App Scanning Plugin ID 114620 with Medium Severity Synopsis RustDesk Console Detected Description RustDesk is a mote access and control software that enables management of computers and other devices. RustDesk server Pro embeds a web console allowing users to browse devices and perform configuration modification on the application. By leveraging this, a remote and unauthenticated attacker could use some techniques, such as a Brute-Force or Dictionary Attack, in order to gain access to administrative functionality.Note that this detection is included in the Remote Access Tools category. Solution Restrict access to administrative functionality using, for example, a .htaccess file and limiting access to known IP Addresses. Read more at https://www.tenable.com/plugins/was/114620 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	Docker Public Registry Detected Description: Web App Scanning Plugin ID 114621 with Info Severity Synopsis Docker Public Registry Detected Description This is an informational notice that the scanner was able to detect a public Docker registry instance. Solution Ensure that the public permissions applied on the detected registry are expected. Read more at https://www.tenable.com/plugins/was/114621 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	LiteLLM Detected Description: Web App Scanning Plugin ID 114622 with Info Severity Synopsis LiteLLM Detected Description This is an informational plugin to inform the user that the scanner has detected a publicly accessible LiteLLM instance on the target application. LiteLLM is a LLM Gateway to provide model access in the OpenAI format. This detection is included in the AI and LLM category. Solution If the application is not expected to be public, restrict access using a .htaccess file, limiting access to known IP Addresses. Read more at https://www.tenable.com/plugins/was/114622 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	LiteLLM < 1.48.18 Server-Side Request Forgery Description: Web App Scanning Plugin ID 114623 with High Severity Synopsis LiteLLM < 1.48.18 Server-Side Request Forgery Description According to its self-reported version, the instance of LiteLLM running on the remote web server is prior to 1.48.18. It is, therefore, affected by a Server-Side Request Forgery vulnerability in the chat completion.Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. Solution Upgrade to LiteLLM version 1.48.18 or later. Read more at https://www.tenable.com/plugins/was/114623 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	RustDesk Console Default Credentials Description: Web App Scanning Plugin ID 114624 with Critical Severity Synopsis RustDesk Console Default Credentials Description RustDesk is a mote access and control software that enables management of computers and other devices. RustDesk server Pro embeds a web console allowing users to browse devices and perform configuration modification on the application. A remote and unauthenticated attacker can use the default `admin/test1234` credentials in order to gain access to administrative functionality.Note that this detection is included in the Remote Access Tools category. Solution The application should not be configured with accounts using default or predictable credentials. A complex password policy should be defined and enforced on every account available in the application to prevent attackers from guessing it and have unauthorized access to the application. Read more at https://www.tenable.com/plugins/was/114624 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	LiteLLM Default Credentials Description: Web App Scanning Plugin ID 114625 with Critical Severity Synopsis LiteLLM Default Credentials Description LiteLLM applies an authentication system with credentials that could have been suggested from the documentation. If these credentials are not modified, an attacker could access LiteLLM's interface and perform arbitrary actions. This detection is included in the AI and LLM category. Solution The application should not be configured with accounts using default or predictable credentials. A complex password policy should be defined and enforced on every account available in the application to prevent attackers from guessing it and have unauthorized access to the application. Read more at https://www.tenable.com/plugins/was/114625 Source: Tenable Plugins March 11th, 2025 (4 months ago)
	RustDesk API Admin Detected Description: Web App Scanning Plugin ID 114626 with Medium Severity Synopsis RustDesk API Admin Detected Description RustDesk is a remote access and control software that enables management of computers and other devices. RustDesk API Admin is a RESTful API allowing automation and integration of RustDesk functionality into other systems. By levegaring this service, a remote and unauthenticated attacker could use some techniques, such as a Brute-Force or Dictionary Attack, in order to gain access to administrative functionality.Note that this detection is included in the Remote Access Tools category. Solution Restrict access to administrative functionality using, for example, a .htaccess file and limiting access to known IP Addresses. Read more at https://www.tenable.com/plugins/was/114626 Source: Tenable Plugins March 11th, 2025 (4 months ago)