The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-6a4ffde369 advisory. **WordPress 6.5.5 Maintenance & Security Release** Security updates included in this release The security team would like to thank the following people for responsibly reporting vulnerabilities, and allowing them to be fixed in this release: * A cross-site scripting (XSS) vulnerability affecting the HTML API reported by Dennis Snell of the WordPress Core Team, along with Alex Concha and Grzegorz (Greg) Zikowski of the WordPress security team. * A cross-site scripting (XSS) vulnerability affecting the Template Part block reported independently by Rafie Muhammad of Patchstack and during a third party security audit. * A path traversal issue affecting sites hosted on Windows reported independently by Rafie M & Edouard L of Patchstack, David Fifield, x89, apple502j, and mishre. See also the [Upstream announcement](https://wordpress.org/news/2024/06/wordpress-6-5-5/) Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version…Read More