Exploit for PHP Remote File Inclusion in Wpplugins Hide_My_Wp_Ghost

CVE-2025-26909 Vulnerability Scanner A Python-based scanner a...

Exploit for CVE-2025-0133

Description: It is a POC for CVE-2025-0133 that is applicab...

Exploit for Race Condition in Microsoft

RCE-CVE-2025-32710 Windows Remote Desktop Services Vulnerabili...

Clam AntiVirus Toolkit 1.4.3

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command-line scanner, and a tool for automatic updating via Internet. The programs ar...

WordPress Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal Plugin <= 16.8 is vulnerable to Broken Access Control

Software Malcure Malware Scanner — 1 Toolset for WordPress Malware Removal Type Plugin Vulnerable versions = 16.8 Fixed in 16.9 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE N/A Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID...

Exploit for CVE-2025-29927

Next.js Vulnerability Scanner CVE-2025-29927 !Go Report C...

GitLab 17.9 < 17.10.8 / 17.11 < 17.11.4 / 18.0 < 18.0.2 (CVE-2025-5195)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1. It was possible for authenticated users to access arbitrary...

EulerOS 2.0 SP13 : glibc (EulerOS-SA-2025-1615)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message stri...

Amazon Linux 2023 : cuda-nvtx-12 (ALAS2023NVIDIA-2025-099)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-099 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute...

KB5060533: Windows 10 version 21H2 / Windows 10 Version 22H2 Security Update (June 2025)

The remote Windows host is missing security update 5060533. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-33066 - Improper access contro...

Windows LAPS

Binary data wmiwindowslaps.nbin...

NewStart CGSL MAIN 7.02 : keepalived Vulnerability (NS-SA-2025-0079)

The remote NewStart CGSL host, running version MAIN 7.02, has keepalived packages installed that are affected by a vulnerability: - In the vrrpipsetshandler handler fglobalparser.c of keepalived through 2.3.1, an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an...

NewStart CGSL MAIN 7.02 : ImageMagick Vulnerability (NS-SA-2025-0088)

The remote NewStart CGSL host, running version MAIN 7.02, has ImageMagick packages installed that are affected by a vulnerability: - A heap use-after-free flaw was found in coders/bmp.c in ImageMagick. CVE-2023-5341 Note that Nessus has not tested for these issues but has instead relied only on t...

NewStart CGSL MAIN 7.02 : libxml2 Vulnerability (NS-SA-2025-0072)

The remote NewStart CGSL host, running version MAIN 7.02, has libxml2 packages installed that are affected by a vulnerability: - libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c. CVE-2025-27113 Note that Nessus has not tested for these...

Fedora 42 : chromium (2025-bc0d109630)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-bc0d109630 advisory. Update to 137.0.7151.68 CVE-2025-5419: Out of bounds read and write in V8 CVE-2025-5068: Use after free in Blink Tenable has extracted the preceding...

Drift Chatbot Detected

This is an informational plugin to inform the user that the scanner has detected a publicly accessible Drift chatbot on the target application. Drift is a solution to build & deploy AI customer experiences. This detection is included in the AI and LLM category. No source data...

Intercom Chatbot Detected

This is an informational plugin to inform the user that the scanner has detected a publicly accessible Intercom chatbot on the target application. Intercom is a solution to build & deploy AI customer experiences. This detection is included in the AI and LLM category. No source data...

Fedora 42 : php-adodb (2025-118f6569ff)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-118f6569ff advisory. 5.22.9 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for these...

RHEL 10 : git (RHSA-2025:7482)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:7482 advisory. Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-serv...

FreeBSD : electron{34,35,36} -- Out of bounds read and write in V8 (8c94ae2a-06f5-4383-9a7f-1211cb0dd476)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 8c94ae2a-06f5-4383-9a7f-1211cb0dd476 advisory. Electron developers report: This update fixes the following vulnerability: Tenable has extracted the...