Lucene search
K

58857 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.26 views

WordPress 4.4.x < 4.4.33 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A Cross-Site Scripting XSS vulnerability affecting the HTML API. - A Cross-Site Scripting XSS vulnerability affecting the Template Part block. - A path traversal issue...

6.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.369 views

WordPress 6.2.x < 6.2.6 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A Cross-Site Scripting XSS vulnerability affecting the HTML API. - A Cross-Site Scripting XSS vulnerability affecting the Template Part block. - A path traversal issue...

6.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.348 views

WordPress 6.1.x < 6.1.7 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A Cross-Site Scripting XSS vulnerability affecting the HTML API. - A Cross-Site Scripting XSS vulnerability affecting the Template Part block. - A path traversal issue...

6.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:35 p.m.4 views

Malicious code in erc20-scanner (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSV
OSV
added 2024/06/25 1:35 p.m.6 views

MAL-2024-5112 Malicious code in erc20-scanner (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
OSV
OSV
added 2024/06/25 12:20 p.m.4 views

MAL-2024-2659 Malicious code in mf-seller-xp-commons-module-scanner (npm)

False positive caused by problematic ingestion. --- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.8 views

PyTorch Detection

Binary data pytorchdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.33 views

IBM WebSphere Application Server 8.5.x < 8.5.5.26 / 9.x < 9.0.5.21 XSS (7158662)

The version of IBM WebSphere Application Server running on the remote host is affected by a XSS vulnerability as referenced in the 7158662 advisory. - IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary...

4.8CVSS6.9AI score0.00362EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.22 views

RHEL 8 : [23.0] Security update for the 23.0 (RPMs) (Low) (RHSA-2024:4081)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4081 advisory. The quarkus-mandrel-java and quarkus-mandrel-23 packages provide the GraalVM installation for the quarkus/mandrel-23-rhel8:23.0 container...

3.7CVSS6.5AI score0.00564EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.16 views

EulerOS 2.0 SP11 : llvm (EulerOS-SA-2024-1839)

According to the versions of the llvm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : LLVM 15.0.0 has a NULL pointer dereference in the parseOneMetadata function via a crafted pdflatex.fmt file or perhaps a crafted .o file to llvm-lto...

5.3CVSS5.5AI score0.00681EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.19 views

FreeBSD : chromium -- multiple security fixes (2b68c86a-32d5-11ef-8a0f-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 2b68c86a-32d5-11ef-8a0f-a8a1599412c6 advisory. Chrome Releases reports: This update includes 5 security fixes: Tenable has extracted the...

8.8CVSS8.2AI score0.00546EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.25 views

Rockwell Automation ThinManager ThinServer SD1677 Multiple Vulnerabilites

The version of Rockwell Automation ThinManager ThinServer installed on the remote host is 11.1.x prior to 11.1.8, 11.2.x prior to 11.2.9, 12.0.x prior to 12.0.7, 12.1.x prior to 12.1.8, 13.0.x prior to 13.0.5, 13.1.x prior to 13.1.3 or 13.2.x prior to 13.2.2. It is therefore, affected by mutliple...

9.8CVSS6.7AI score0.02654EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.40 views

AlmaLinux 9 : python3.11 (ALSA-2024:4077)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:4077 advisory. python: Path traversal on tempfile.TemporaryDirectory CVE-2023-6597 Tenable has extracted the preceding description block directly from the AlmaLinux security...

7.8CVSS7.2AI score0.00313EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.11 views

NextChat < 2.12.4 Server-Side Request Forgery

NextChat formerly ChatGPT-Next-Web versions prior to 2.12.4 are vulnerable to Server-Side Request Forgery SSRF and Cross-Site Scripting attacks, allowing remote and unauthenticated attacker to make the vulnerable instance issue arbitrary requests on both external or internal assets through the...

7.4CVSS7.2AI score0.02186EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.14 views

Adobe FrameMaker Publishing Server Authentication Bypass (CVE-2024-30299)

Binary data adobefmpsapiauthbypass.nbin...

10CVSS9.6AI score0.01051EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.28 views

Amazon Linux 2023 : golang, golang-bin, golang-misc (ALAS2023-2024-646)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-646 advisory. The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip implementations. This misalignment could be exploited to create an zip file with...

9.8CVSS7.4AI score0.01952EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.37 views

Amazon Linux 2 : golang (ALAS-2024-2576)

The version of golang installed on the remote host is prior to 1.22.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2576 advisory. The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip...

9.8CVSS7.4AI score0.01952EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.30 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Hibernate vulnerability (USN-6845-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6845-1 advisory. It was discovered that Hibernate incorrectly handled certain inputs with unsanitized literals. If a user or an automated system were trick...

7.4CVSS7.5AI score0.02907EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.35 views

Amazon Linux 2 : python3-jinja2 (ALAS-2024-2582)

The version of python3-jinja2 installed on the remote host is prior to 2.7.2-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2582 advisory. In Pallets Jinja before 2.10.1, str.formatmap allows a sandbox escape. CVE-2019-10906 Tenable has extracted the preceding...

8.6CVSS7.2AI score0.03603EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/06/24 12:0 a.m.28 views

Amazon Linux 2 : python-crypto (ALASANSIBLE2-2024-011)

It is, therefore, affected by a vulnerability as referenced in the ALAS2ANSIBLE2-2024-011 advisory. Heap-based buffer overflow in the ALGnew function in blocktemplace.c in Python Cryptography Toolkit aka pycrypto allows remote attackers to execute arbitrary code as demonstrated by a crafted iv...

9.8CVSS9.1AI score0.09501EPSS
Exploits1References4
Rows per page
Query Builder