988 matches found
PT-2026-1580
Name of the Vulnerable Software and Affected Versions Key Figures plugin for WordPress versions prior to 1.2 Description The Key Figures plugin for WordPress is susceptible to Stored Cross-Site Scripting through the kf field figure default color render function. Insufficient input sanitization an...
PT-2026-1499
Name of the Vulnerable Software and Affected Versions Mojoomla WPCHURCH versions through 2.7.0 Description The software contains a flaw related to improper control of filenames used in include/require statements, specifically a PHP Local File Inclusion issue. This allows for unauthorized access a...
PT-2026-2106
Name of the Vulnerable Software and Affected Versions Mailpit versions 1.28.0 and below Description Mailpit is an email testing tool and API for developers. A Server-Side Request Forgery SSRF exists in the /proxy endpoint, allowing attackers to make requests to internal network resources. The...
Fedora 42 : doctl (2025-cfdb90b52d)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-cfdb90b52d advisory. Update to 1.148.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...
PT-2026-1099
Name of the Vulnerable Software and Affected Versions MARS Multi-Application Recovery Service versions prior to 1.2.1.1686 Description An SQL injection issue affects MARS Multi-Application Recovery Service. Successful exploitation could allow remote attackers to execute unauthorized code or...
Fedora: Security Advisory (FEDORA-2025-c6b2100f44)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 43 : gh (2025-c6b2100f44)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-c6b2100f44 advisory. Update to 2.83.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...
PT-2025-53895
Name of the Vulnerable Software and Affected Versions Youzify versions through 1.3.5 Description The software contains a Server-Side Request Forgery SSRF flaw. This allows for Server Side Request Forgery. Recommendations Update Youzify to a version later than 1.3.5...
Fedora: Security Advisory (FEDORA-2025-202d079b40)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 43 : opentofu (2025-6968ab200a)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-6968ab200a advisory. Update to 1.11.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...
PT-2025-53452
Name of the Vulnerable Software and Affected Versions Eaton UPS Companion software affected versions not specified Description A flaw exists in the Eaton UPS Companion software installer related to improper authentication of library files. This could allow an attacker who has access to the softwa...
PT-2025-53297
Name of the Vulnerable Software and Affected Versions MyNET versions up to 26.08.316 Description The software contains an unauthenticated SQL Injection issue through the intmenu parameter. This allows for potential unauthorized access to the database. Recommendations Update MyNET to a version lat...
PT-2025-52855
Name of the Vulnerable Software and Affected Versions Coolify versions prior to 4.0.0-beta.451 Description Coolify is a self-hostable tool for managing servers, applications, and databases. A command injection issue exists in the Dynamic Proxy Configuration Filename handling. Authenticated users...
PT-2025-52675
Name of the Vulnerable Software and Affected Versions MyNET versions prior to 26.05 Description The software contains a reflected cross-site scripting XSS issue. The vulnerability is present in the src parameter. Recommendations Update to a version newer than 26.05...
PT-2025-52543
Name of the Vulnerable Software and Affected Versions Responsive and Swipe slider plugin for WordPress versions prior to 1.0.3 Description The plugin is susceptible to Stored Cross-Site Scripting due to inadequate input sanitization and output escaping of user-supplied attributes within the...
Fedora 42 : gosec (2025-447e38400e)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-447e38400e advisory. Update to 2.22.11 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...
Oracle Linux 8 : webkit2gtk3 (ELSA-2025-23663)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23663 advisory. 2.50.4-1 - Update to 2.50.4 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...
openSUSE Security Advisory (SUSE-SU-2025:4481-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-ebfdef0115)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google Chrome Security Update (stable-channel-update-for-desktop_16-2025-12) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...