CVE-2025-23789

CVE-2025-23789 – Reflected XSS in tahminajannat URL Shortener Root cause: Improper neutralization of input during web page generation in the WordPress URL Shortener (WooCommerce integration). This allows Reflected XSS, affecting WordPress plugins/ WooCommerce incorporation up to version 9.0.2 (pe...

New mandatory USCG cyber regulations. What you need to know

TL;DR US Coast Guard introduces mandatory new Marine Transportation System cybersecurity requirements They take effect on July 16, 2025, and training must begin by July 17, 2025 US flagged large commercial vessels affected Cybersecurity Officers CySO need to be appointed Penetration testing of...

WordPress plugin URL Shortener | Conversion Tracking  | AB Testing  | WooCommerce 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exist...

AlmaLinux 8 : doxygen (ALSA-2025:1314)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:1314 advisory. jquery: Untrusted code execution via tag in HTML passed to DOM manipulation methods CVE-2020-11023 Tenable has extracted the preceding description block directly...

Google Chrome < 133.0.6943.98 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 133.0.6943.98. It is, therefore, affected by multiple vulnerabilities as referenced in the 202502stable-channel-update-for-desktop12 advisory. - Use after free in Navigation in Google Chrome prior to 133.0.6943.98 allow...

Azure Linux 3.0 Security Update: libcxx / llvm / rust (CVE-2024-31852)

The version of libcxx / llvm / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-31852 advisory. - LLVM before 18.1.3 generates code in which the LR register can be overwritten without data bei...

Azure Linux 3.0 Security Update: python3 (CVE-2024-0450)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0450 advisory. - An issue was found in the CPython zipfile module affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2023-31084)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-31084 advisory. - An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a...

Azure Linux 3.0 Security Update: libarchive (CVE-2024-48957)

The version of libarchive installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-48957 advisory. - executefilteraudio in archivereadsupportformatrar.c in libarchive before 3.7.5 allows out-of-bounds acce...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46759)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46759 advisory. - In the Linux kernel, the following vulnerability has been resolved: hwmon: adc128d818 Fix underflows seen wh...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47695)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47695 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs-clt: Reset cid to connum - 1 t...

Azure Linux 3.0 Security Update: kernel (CVE-2024-50024)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50024 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: Fix an unsafe loop on the list The...

Azure Linux 3.0 Security Update: boost / cloud-hypervisor-cvm / cmake / erlang / grpc / mariadb / nmap / qt5-qtbase / teckit (CVE-2018-25032)

The version of boost / cloud-hypervisor-cvm / cmake / erlang / grpc / mariadb / nmap / qt5-qtbase / teckit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2018-25032 advisory. - zlib before 1.2.12 allo...

Azure Linux 3.0 Security Update: bind (CVE-2024-4076)

The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4076 advisory. - Client queries that trigger serving stale data and that also require lookups in local authoritative zone data M...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-26951)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26951 advisory. - In the Linux kernel, the following vulnerability has been resolved: wireguard: netlink: check for...

Azure Linux 3.0 Security Update: pytorch (CVE-2024-27319)

The version of pytorch installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27319 advisory. - Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the...

Azure Linux 3.0 Security Update: kernel (CVE-2024-50006)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50006 advisory. - In the Linux kernel, the following vulnerability has been resolved: ext4: fix idatasem unlock order in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-43856)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42072)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42072 advisory. - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset...

Azure Linux 3.0 Security Update: kernel (CVE-2024-40902)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-40902 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for...