RHSA-2024:1883

creationtimestamp| type| source ---|---|--- 2025-10-01 09:00:19+00:00| seen| Telegram/HOI9RhqBej92SEDYPeYOufaX9SS-ALTRn7qub0MNpF0T4 2025-10-01 09:00:21+00:00| seen| Telegram/T18PCyJX5gS6gcDXW3dVGKsiGFXlCyqv6FilSSHPuh1hqZ4 2025-10-01 09:00:22+00:00| seen|...

Fedora 42 : firebird (2025-d24499a627)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-d24499a627 advisory. 4.0.6.3221 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for the...

Cisco SD-WAN vEdge Software Access Control List Bypass (cisco-sa-defaultacl-pSJk9nVF)

According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

Dotnetnuke < 10.1.0 Stored Cross-Site Scripting (XSS) in Prompt module (CVE-2025-59545)

According to its self-reported version, the instance of Dotnetnuke running on the remote web server is prior to 10.1.0. It is, therefore, affected by a vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

Fedora 41 : gh (2025-24e111e6f1)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-24e111e6f1 advisory. Update to 2.79.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

CVE-2024-13174

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E1 Informatics Web Application allows SQL Injection.This issue affects Web Application: through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the...

Jenkins LTS < 2.516.3 / Jenkins weekly < 2.528 Multiple Vulnerabilities

According to its its self-reported version number, the version of Jenkins running on the remote web server is Jenkins LTS prior to 2.516.3 or Jenkins weekly prior to 2.528. It is, therefore, affected by multiple vulnerabilities: - In Eclipse Jetty, versions =9.4.57, =10.0.25, =11.0.25, =12.0.21,...

CVE-2023-53186

creationtimestamp| type| source ---|---|--- 2025-09-15 14:45:44+00:00| seen| https://gist.github.com/Darkcrai86/64fb5bf5d6c6621f71f5416b13e99774...

Security Updates for Microsoft Visio Products C2R (September 2025)

The Microsoft Visio Products are missing a security update. It is, therefore, affected by a remote code execution vulnerability that attackers can exploit to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for this issue but has instead relied on...

Linux Distros Unpatched Vulnerability : CVE-2015-1343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of unity-scope-gdrive logs search terms to syslog. CVE-2015-1343 Note that Nessus relies on the presence of the package as reported by the vendor...

WordPress 69 Clothing Theme <= 1.2.11 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme 69 Clothing versions = 1.2.11...

Linux Distros Unpatched Vulnerability : CVE-2024-38823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Salt's request server is vulnerable to replay attacks when not using a TLS encrypted transport. CVE-2024-38823 Note that Nessus relies on the presence of the...

CVE-2025-48553

creationtimestamp| type| source ---|---|--- 2025-09-04 21:29:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ly23pxnvya2e...

CVE-2025-58179

creationtimestamp| type| source ---|---|--- 2025-09-04 17:28:39+00:00| published-proof-of-concept| https://github.com/withastro/astro/security/advisories/GHSA-qpr4-c339-7vq8 2025-09-05 01:43:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ly2jvw737s2c 2025-09-07 13:30:16+00:00|...

Linux Distros Unpatched Vulnerability : CVE-2025-26527

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Tags not expected to be visible to a user could still be discovered by them via the tag search page or in the tags block. CVE-2025-26527 Note that Nessus relies...

CVE-2025-55852

creationtimestamp| type| source ---|---|--- 2025-09-03 17:47:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxx6sqhsy22z...

CVE-2025-9839

creationtimestamp| type| source ---|---|--- 2025-09-03 06:22:00+00:00| seen| https://gist.github.com/Darkcrai86/d331772302066ddfaf3eb355e74d7b1b...

FreeBPX < 16.0.89 Authentication Bypass

According to its self-reported version number, the FreePBOX application running on the remote host is prior to 15.0.66 or 16.x prior to 16.0.89 or 17.x prior to 17.0.3. It is, therefore, affected by an insufficiently sanitized user-supplied data allowing unauthenticated access to FreePBX...

CVE-2025-8301

creationtimestamp| type| source ---|---|--- 2025-09-02 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-880/ 2025-09-02 23:04:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxva44zik32j...

CVE-2011-0182

creationtimestamp| type| source ---|---|--- 2025-08-31 03:01:32+00:00| seen| MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d...