CVE Alert: CVE-2024-51024
Vulnerability Summary: CVE-2024-51024 D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the...
CVE Alert: CVE-2024-52026
Vulnerability Summary: CVE-2024-52026 Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via...
CVE Alert: CVE-2024-52030
Vulnerability Summary: CVE-2024-52030 Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pptp_user_netmask parameter at ru_wan_flow.cgi. This...
CVE Alert: CVE-2024-52028
Vulnerability Summary: CVE-2024-52028 Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pptp_user_netmask parameter at wiz_pptp.cgi. This...
CVE Alert: CVE-2024-52029
Vulnerability Summary: CVE-2024-52029 Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the pptp_user_netmask parameter at genie_pptp.cgi. This...
CVE Alert: CVE-2024-52025
Vulnerability Summary: CVE-2024-52025 Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via...
CVE Alert: CVE-2024-52023
Vulnerability Summary: CVE-2024-52023 Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via...
CVE Alert: CVE-2024-52024
Vulnerability Summary: CVE-2024-52024 Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a stack overflow via...
CVE Alert: CVE-2023-29119
Vulnerability Summary: CVE-2023-29119 Waybox Enel X web management application could execute arbitrary requests on the internal database via /admin/dbstore.php. Affected...
CVE Alert: CVE-2024-52022
Vulnerability Summary: CVE-2024-52022 Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were discovered to contain a command...
[MEOW] – Ransomware Victim: Lincoln University
Ransomware Group: MEOW VICTIM NAME: Lincoln University NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Winos 4.0 Malware Infects Gamers Through Malicious Game Optimization Apps
Cybersecurity researchers are warning that a command-and-control (C&C) framework called Winos is being distributed within gaming-related applications like installation tools,...
VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware
An ongoing threat campaign dubbed VEILDrive has been observed taking advantage of legitimate services from Microsoft, including Teams, SharePoint, Quick...
HackerOne Bug Bounty Disclosure: cve-hsts-subdomain-overwrites-parent-cache-entry-newfunction
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:newfunctionLink to Submitters Profile:https://hackerone.com/newfunction Report Title:CVE-2024-9681: HSTS subdomain overwrites parent cache entryReport...
HackerOne Bug Bounty Disclosure: potential-xss-in-redirect-url-parameter-kindone
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:kindoneLink to Submitters Profile:https://hackerone.com/kindone Report Title:Potential XSS in redirect_url ParameterReport Link:https://hackerone.com/reports/2653342Date Submitted:06...
HackerOne Bug Bounty Disclosure: exploitable-format-string-vulnerability-in-curl-mfprintf-function-reterix
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:reterixLink to Submitters Profile:https://hackerone.com/reterix Report Title:Exploitable Format String Vulnerability in curl_mfprintf FunctionReport...
HackerOne Bug Bounty Disclosure: -potential-xss-vulnerability-in-acronis-login-callback-url-kindone
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:kindoneLink to Submitters Profile:https://hackerone.com/kindone Report Title: Potential XSS Vulnerability in Acronis Login...
[FOG] – Ransomware Victim: GSR Andrade Architects (gsr-andrade[.]com)
Ransomware Group: FOG VICTIM NAME: GSR Andrade Architects (gsr-andradecom) NOTE: No files or stolen information are by RedPacket Security. Any...
[FOG] – Ransomware Victim: Cape Cod Regional Technical High School (capetech[.]us)
Ransomware Group: FOG VICTIM NAME: Cape Cod Regional Technical High School (capetechus) NOTE: No files or stolen information are by...
New Winos 4.0 Malware Infects Gamers Through Malicious Game Optimization Apps
Cybersecurity researchers are warning that a command-and-control (C&C) framework called Winos is being distributed within gaming-related applications like installation tools,...
CVE Alert: CVE-2023-29126
Vulnerability Summary: CVE-2023-29126 The Waybox Enel X web management application contains a PHP-type juggling vulnerability that may allow a brute...
CVE Alert: CVE-2023-29118
Vulnerability Summary: CVE-2023-29118 Waybox Enel X web management application could execute arbitrary requests on the internal database via /admin/versions.php. Affected...
CVE Alert: CVE-2023-29117
Vulnerability Summary: CVE-2023-29117 Waybox Enel X web management API authentication could be bypassed and provide administrator’s privileges over the Waybox...
CVE Alert: CVE-2023-29116
Vulnerability Summary: CVE-2023-29116 Under certain conditions, through a request directed to the Waybox Enel X web management application, information like...