New Detections Rolling Out for Vulnerable CMSs and CMS Plugins

Document created by Dave Ferguson Employee on Jan 18, 2018Last modified by Dave Ferguson Employee on Oct 7, 2019
Version 15Show Document
  • View in full screen mode
In a previous post, we described how Qualys WAS added new informational QIDs to report CMS versions and CMS plugins found on your scanned web applications.  Now, as part of the continuous improvement of the scanning engine, new tests have been implemented to report known-vulnerable versions of CMSs, CMS plugins, and other web platforms.

 

The new tests are based on the Blind Elephant project, which uses a fingerprinting technique.  Qualys WAS can identify and report outdated and vulnerable versions of the following:

 

  • WordPress
  • Joomla!
  • Drupal

 

The Qualys Vulnerability Management ("VM") module includes many of these tests already as part of its scanning capabilities.  Those tests are essentially being duplicated in WAS.  Having the checks in both places allows more flexibility for customers who are using both modules while providing valuable new functionality for WAS customers who are not using VM. 

 

For smaller QID values (105999 and below) WAS is using existing QIDs rather than introducing new ones.  Newly-introduced QIDs for CMS Blind Elephant tests in WAS are 154000 or greater.

 

As of today (7-Oct-2019) , WAS includes tests for the following QIDs:

 

WordPressJoomla!Drupal

11487

11494

11499
11504
11505

11519
11526

11537
11552
11565
11573

11609
11641
11689

11703

11704

11705
11763
11774
11758
11769
11805
11813
11825
11826
11861
11878

12265

12293

12302

12308

12312

12331

12402

12457

12460

12467

12497

12508

12598
12751
12851

12882

12914
13012
13075
13133

13137

105667

154000

154001

154002

154003

154004

154005

154025

154026

154031

154032

154038

154044

150045

150046

150047

11560

11561

11563

11659

11710
11741
11742
11800
11808

11814
11842
11843
11862
11863

12597

154006

154007

154008

154009

154010

154011

154012

154013

154014

154015

154016

154017

154020

154021

154022

154023

154024

154027

154029

154033

154034

154035

154036

154037

154041

154042

154043

10773
11511
11540
11580
11582
11616

11634
11649

11665

11666
11733
11776
11794
11836
11852

12400

12601

12633
12786
12789
12791
12794
12796
12797
12799
12800
12801
12820
12932
13013
13054
13062
13073
13074
13119
13124
13125

154018

154019

154028

154039

154040

 

The post will be updated as more of these types of vulnerability tests are implemented in WAS and released.

3 people found this helpful

Attachments

    Outcomes