118 matches found
MiracleLinux 8 : tang-7-8.el8 (AXSA:2023-7186:03)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7186:03 advisory. tang: Race condition exists in the key generation and rotation functionality CVE-2023-1672 Tenable has extracted the preceding description block directly fro...
CVE-2025-1672
The Notibar – Notification Bar for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
TencentOS Server 3: tang (TSSA-2023:0292)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0292 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
TencentOS Server 4: tang (TSSA-2025:0140)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0140 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Alibaba Cloud Linux 3 : 0043: tang (ALINUX3-SA-2024:0043)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0043 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-1672: A race condition exists in the Tang...
CVE-2025-1672
creationtimestamp| type| source ---|---|--- 2025-03-06 09:37:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6658 2025-03-06 13:39:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljpmlaxvn62o 2025-03-06 13:50:32+00:00| seen| https://t.me/cvedetector/19693 2025-03-08...
CVE-2025-1672
CVE-2025-1672 refers to Notibar – Notification Bar for WordPress, a stored XSS in admin settings affecting versions up to 2.1.5. The vulnerability requires authenticated attackers with administrator-level privileges (and above) and is limited to multisite setups or installs where unfiltered_html ...
CVE-2025-1672 Notibar <= 2.1.5 - Authenticated (Administrator+) Stored Cross-Site Scripting
The Notibar – Notification Bar for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
Linux Distros Unpatched Vulnerability : CVE-2024-1672
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Content Security Policy in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via ...
openSUSE Security Advisory (openSUSE-SU-2024:0084-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for chromium (FEDORA-2024-6a879cfa63)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Chromium: CVE-2024-1672 Inappropriate implementation in Content Security Policy
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Debian dsa-5629 : chromium - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5629 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5629-1...
CVE-2024-1672
creationtimestamp| type| source ---|---|--- 2024-02-21 05:26:48+00:00| seen| https://t.me/ctinow/189210 2024-02-21 05:27:04+00:00| seen| https://t.me/ctinow/189221 2024-02-22 03:34:28+00:00| seen| https://t.me/arpsyndicate/3889 2024-02-23 22:46:26+00:00| seen| https://t.me/ctinow/192248 2024-03-0...
CVE-2024-1672
Inappropriate implementation in Content Security Policy in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...
CVE-2024-1672
Inappropriate implementation in Content Security Policy in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...
CVE-2024-1672
Inappropriate implementation in Content Security Policy in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...
CVE-2024-1672
Inappropriate implementation in Content Security Policy in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...
CVE-2024-1672
CVE-2024-1672 affects Google Chrome/Chromium CSP handling. The vulnerability arises from an inappropriate CSP policy implementation that allows bypass via a crafted HTML page. Root cause: CSP module in Chromium is improperly enforcing policy. Affected: Chrome/Chromium builds prior to 122.0.6261.5...
Stable Channel Update for Desktop
The Chrome team is delighted to announce the promotion of Chrome 122 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 122.0.6261.57 Linux and Mac, 122.0.6261.57/.58 Windows contains a number of fixes and improvements -- a list of changes is...