Acunetix Premium - v.Security

Security checks

• Updated the Vulnerability Database (VDB) to version 20251230
• Added 84 new versions for 50 technologies and 133 new CVEs
• Improved severity ratings for Dotclear version 2.29 from Medium to High
• Improved severity ratings for Jenkins versions 2.426.3, 2.452.4, 2.462.1-2.462.3, 2.471-2.492, 2.492.1-2.492.3, 2.493-2.501, 2.504 from Medium to High
• Improved severity ratings for Liferay DXP versions 2024.q1.14-2024.q1.18 from High to Critical
• Improved severity ratings for Liferay DXP versions 2024.q3.0, 2024.q4.7, 2025.q1.0-2025.q1.14, 2025.q2.0 from Medium to Critical
• Improved severity ratings for Liferay Portal version 7.4.3.132 from Medium to Critical
• Improved severity ratings for Next.js React Framework versions 15.2.6-15.2.7, 15.3.6-15.3.7, 15.4.8-15.4.9 from Critical to High
• Improved severity ratings for Next.js React Framework version 15.6.0 from High to Critical
• Improved severity ratings for React versions 19.0.1-19.0.2, 19.1.2-19.1.3 from Critical to High
• Improved severity ratings for Roundcube versions 1.5.6, 1.6.5-1.6.6 from Medium to High
• Improved severity ratings for Ruby version 1.9.0 from Critical to High

• Added vulnerability detection for Coppermine:
  • CVE-2023-53868 (High)
• Added vulnerability detection for Dotclear:
  • CVE-2023-53952 (High)
  • CVE-2024-58281 (High)
• Added vulnerability detection for Jenkins:
  • CVE-2025-67635 (High)
  • CVE-2025-67636 (Medium)
  • CVE-2025-67637 (Medium)
  • CVE-2025-67638 (Medium)
  • CVE-2025-67639 (Low)
• Added vulnerability detection for Liferay DXP:
  • CVE-2025-43773 (Critical)
  • CVE-2025-43790 (High)
  • CVE-2025-43793 (High)
  • CVE-2025-43796 (High)
  • CVE-2025-43816 (High)
  • CVE-2025-4581 (High)
  • CVE-2025-43771, CVE-2025-43775, CVE-2025-43776, CVE-2025-43779, CVE-2025-43781, CVE-2025-43782, CVE-2025-43783, CVE-2025-43784, CVE-2025-43785, CVE-2025-43786, CVE-2025-43787, CVE-2025-43788, CVE-2025-43789, CVE-2025-43791, CVE-2025-43792, CVE-2025-43794, CVE-2025-43795, CVE-2025-43797, CVE-2025-43798, CVE-2025-43799, CVE-2025-43800, CVE-2025-43803, CVE-2025-43805, CVE-2025-43807, CVE-2025-43808, CVE-2025-43809, CVE-2025-43819, CVE-2025-43821, CVE-2025-43822, CVE-2025-43823, CVE-2025-43824, CVE-2025-43825, CVE-2025-43826, CVE-2025-43827, CVE-2025-43829, CVE-2025-4388, CVE-2025-4576, CVE-2025-4599, CVE-2025-4604, CVE-2025-4655, CVE-2025-62243, CVE-2025-62244 (Medium)
• Added vulnerability detection for Liferay Portal:
  • CVE-2025-43773 (Critical)
  • CVE-2025-43790 (High)
  • CVE-2025-43793 (High)
  • CVE-2025-43796 (High)
  • CVE-2025-43816 (High)
  • CVE-2025-4581 (High)
  • CVE-2025-43771, CVE-2025-43775, CVE-2025-43776, CVE-2025-43779, CVE-2025-43781, CVE-2025-43782, CVE-2025-43783, CVE-2025-43784, CVE-2025-43785, CVE-2025-43786, CVE-2025-43787, CVE-2025-43788, CVE-2025-43789, CVE-2025-43791, CVE-2025-43792, CVE-2025-43794, CVE-2025-43795, CVE-2025-43797, CVE-2025-43799, CVE-2025-43800, CVE-2025-43803, CVE-2025-43805, CVE-2025-43807, CVE-2025-43808, CVE-2025-43809, CVE-2025-43819, CVE-2025-43821, CVE-2025-43822, CVE-2025-43823, CVE-2025-43824, CVE-2025-43825, CVE-2025-43826, CVE-2025-43827, CVE-2025-43829, CVE-2025-4388, CVE-2025-4576, CVE-2025-4599, CVE-2025-4604, CVE-2025-4655, CVE-2025-62243, CVE-2025-62244 (Medium)
• Added vulnerability detection for Markdown-it:
  • CVE-2025-7969 (Medium)
• Added vulnerability detection for Masa CMS:
  • CVE-2025-66492 (Medium)
• Added vulnerability detection for MyBB:
  • CVE-2023-53979 (High)
  • CVE-2023-53976, CVE-2023-53977, CVE-2023-53978 (Medium)
• Added vulnerability detection for Podcast Generator:
  • CVE-2023-53918, CVE-2023-53919, CVE-2023-53920 (Medium)
• Added vulnerability detection for ProjectSend:
  • CVE-2023-53980 (Critical)
  • CVE-2023-53905 (High)
  • CVE-2023-53930 (High)
  • CVE-2023-53906 (Medium)
• Added vulnerability detection for Python:
  • CVE-2025-12084 (Medium)
• Added vulnerability detection for ReviveAdserver:
  • CVE-2023-53931 (Medium)
• Added vulnerability detection for Roundcube:
  • CVE-2025-49113 (High)
  • CVE-2024-57004 (Medium)
• Added vulnerability detection for Rukovoditel:
  • CVE-2023-53913 (High)
  • CVE-2023-53897, CVE-2023-53898 (Medium)
• Added vulnerability detection for Serendipity:
  • CVE-2023-53933 (High)
  • CVE-2024-58282 (High)
  • CVE-2023-53932 (Medium)
• Added vulnerability detection for Tornado Web Server:
  • CVE-2025-47287 (High)
  • CVE-2025-67725 (High)
  • CVE-2025-67726 (High)
  • CVE-2025-67724 (Medium)
• Added vulnerability detection for XWiki platform:
  • CVE-2025-66473 (High)
• Added vulnerability detection for ZenPhoto:
  • CVE-2023-53915, CVE-2023-53916 (Medium)

Improvements

• Updated vulnerability classifications to align with OWASP Top 10 2025 categories
• Updated OWASP Top 10 scan profile to align with OWASP Top 10 2025 categories