Acunetix Premium - v.Security

Security checks

• Updated the vulnerability database (VDB) to version 20260414.

• Added detection for exposed installers to reduce information disclosure risk and improve coverage.

• Improved JSON parsing and aligned vulnerability tags for more accurate and reliable scan results.

• Added detection for Nginx UI information disclosure (CVE-2026-27944).

• Added detection for Citrix NetScaler memory overread (CVE-2026-3055).

• Updated severity ratings for Joomla versions 3.10.14, 3.10.15, 3.10.16, 3.10.17, 3.10.18, 3.10.19, 3.10.20, 4.4.13, 5.2.6, 5.3.0, 5.3.1 from Medium to High

• Updated severity ratings for Lodash versions 4.17.12, 4.17.13, 4.17.14, 4.17.15, 4.17.16, 4.17.17, 4.17.18, 4.17.19, 4.17.20 from High to Critical

• Updated severity ratings for Piwigo versions 2.9.2, 2.9.3, 2.9.4, 2.10.0, 2.10.1, 2.10.2, 11.0.0, 11.1.0, 11.2.0, 11.3.0, 11.5.0, 12.0.0, 12.1.0, 12.2.0, 12.3.0, 13.1.0, 13.2.0, 13.3.0, 13.4.0, 13.5.0, 13.7.0, 14.0.0, 14.1.0, 14.2.0, 14.3.0, 14.4.0, 14.5.0, 15.6.0 from High to Critical

• Updated severity ratings for Piwigo versions 13.8.0, 15.0.0, 15.1.0, 15.2.0, 15.3.0, 15.4.0, 15.5.0 from Medium to Critical

• Updated severity ratings for phpMyFAQ versions 4.0.16, 4.0.17, 4.0.18 from Medium to High

• Added vulnerability detection for Jboss EAP:

  • Critical: CVE-2026-28367

  • High: CVE-2026-3260

• Added vulnerability detection for Joomla:

  • High: CVE-2026-21629, CVE-2026-21630, CVE-2026-23898, CVE-2026-23899

  • Medium: CVE-2026-21631, CVE-2026-21632

• Added vulnerability detection for Lodash:

  • Critical: CVE-2026-4800

  • Medium: CVE-2026-2950

• Added vulnerability detection for MediaWiki:

  • Medium: CVE-2025-67475, CVE-2025-67477, CVE-2025-67481, CVE-2025-67483

• Added vulnerability detection for MongoDb:

  • High: CVE-2026-4148

  • Medium: CVE-2026-4147

• Added vulnerability detection for Piwigo:

  • Critical: CVE-2026-27634

  • High: CVE-2026-27833, CVE-2026-27834, CVE-2026-27885

• Added vulnerability detection for Roundcube:

  • High: CVE-2026-35545

  • Medium: CVE-2026-35539, CVE-2026-35540, CVE-2026-35541, CVE-2026-35542, CVE-2026-35543, CVE-2026-35544

  • Low: CVE-2026-35538

• Added vulnerability detection for TornadoWebServer:

  • Medium: CVE-2026-35536

• Added vulnerability detection for osTicket:

  • Medium: CVE-2026-26895

• Added vulnerability detection for phpBB:

  • High: CVE-2019-25685

• Added vulnerability detection for phpMyFAQ:

  • High: CVE-2026-34728

  • Medium: CVE-2026-32629, CVE-2026-34729

• Added vulnerability detection for qdPM:

  • High: CVE-2019-25669

• Added vulnerability detection for wordpresspluginbackupmigration:

  • Medium: CVE-2023-0958, CVE-2023-3977