Black Basta Ransomware Victim: AUTOCAM MEDICAL
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Month: April 2023
LockBit 3.0 Ransomware Victim: baughmanco[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
IBM Db2 denial of service | CVE-2023-27555
NAME__________IBM Db2 denial of servicePlatforms Affected:IBM DB2 for Linux UNIX and Windows 11.5Risk Level:5.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________IBM Db2 for Linux,...
IBM DB2 for Linux, UNIX and Windows denial of service | CVE-2023-29255
NAME__________IBM DB2 for Linux, UNIX and Windows denial of servicePlatforms Affected:IBM DB2 for Linux UNIX and Windows 10.5 IBM DB2...
IBM Db2 denial of service | CVE-2023-26021
NAME__________IBM Db2 denial of servicePlatforms Affected:IBM DB2 for Linux UNIX and Windows 11.1 IBM DB2 for Linux UNIX and Windows...
IBM Db2 denial of service | CVE-2023-26022
NAME__________IBM Db2 denial of servicePlatforms Affected:IBM DB2 for Linux UNIX and Windows 10.5 IBM DB2 for Linux UNIX and Windows...
Vinga WR-AC1200 code execution | CVE-2023-24796
NAME__________Vinga WR-AC1200 code executionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Vinga WR-AC1200 could allow a remote attacker to execute arbitrary code on the...
Click to Call or Chat Buttons Plugin for WordPress cross-site scripting | CVE-2023-25710
NAME__________Click to Call or Chat Buttons Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Click to Call or Chat Buttons Plugin for...
Service Location Protocol (SLP, RFC 2608) denial of service | CVE-2023-29552
NAME__________Service Location Protocol (SLP, RFC 2608) denial of servicePlatforms Affected:Risk Level:6.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Service Location Protocol (SLP, RFC 2608) is...
Custom Archive Templates Plugin for WordPress cross-site scripting | CVE-2023-25490
NAME__________Custom Archive Templates Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Custom Archive Templates Plugin for WordPress 1.7.4Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Custom Archive...
JSON Content Importer Plugin for WordPress cross-site scripting | CVE-2023-25485
NAME__________JSON Content Importer Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress JSON Content Importer Plugin for WordPress 1.3.15Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________JSON Content...
Simple Yearly Archive Plugin for WordPress cross-site scripting | CVE-2023-25484
NAME__________Simple Yearly Archive Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Simple Yearly Archive Plugin for WordPress 2.1.8Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Yearly...
Regina Lite Theme for WordPress cross-site scripting | CVE-2023-27619
NAME__________Regina Lite Theme for WordPress cross-site scriptingPlatforms Affected:WordPress Regina Lite Theme for WordPress 2.0.7Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Regina Lite Theme for...
Faculty Evaluation System SQL injection | CVE-2023-2367
NAME__________Faculty Evaluation System SQL injectionPlatforms Affected:Risk Level:4.7Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Faculty Evaluation System is vulnerable to SQL injection. A remote authenticated attacker...
Faculty Evaluation System SQL injection | CVE-2023-2368
NAME__________Faculty Evaluation System SQL injectionPlatforms Affected:Risk Level:4.7Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Faculty Evaluation System is vulnerable to SQL injection. A remote authenticated attacker...
Link Juice Keeper Plugin for WordPress cross-site scripting | CVE-2023-25793
NAME__________Link Juice Keeper Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Link Juice Keeper Plugin for WordPress 2.0.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Link Juice...
Faculty Evaluation System SQL injection | CVE-2023-2369
NAME__________Faculty Evaluation System SQL injectionPlatforms Affected:Risk Level:4.7Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Faculty Evaluation System is vulnerable to SQL injection. A remote authenticated attacker...
ChurchCRM cross-site request forgery | CVE-2023-26841
NAME__________ChurchCRM cross-site request forgeryPlatforms Affected:Risk Level:6.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ChurchCRM is vulnerable to cross-site request forgery, caused by improper validation of user-supplied...
42Gears Surelock for Windows code execution | CVE-2023-2331
NAME__________42Gears Surelock for Windows code executionPlatforms Affected:42Gears Surelock for Windows 2.3.12 42Gears Surelock for Windows 2.40.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________42Gears Surelock...
Exelysis Unified Communication Solutions cross-site scripting | CVE-2023-29836
NAME__________Exelysis Unified Communication Solutions cross-site scriptingPlatforms Affected:Exelysis Exelysis 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Exelysis Unified Communication Solutions is vulnerable to cross-site scripting,...
42Gears Surelock for Windows information disclosure | CVE-2023-2335
NAME__________42Gears Surelock for Windows information disclosurePlatforms Affected:42Gears Surelock for Windows 2.3.12 42Gears Surelock for Windows 2.40.0Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________42Gears Surelock...
Linux Kernel unspecified | CVE-2023-31436
NAME__________Linux Kernel unspecifiedPlatforms Affected:Linux Kernel 6.2.12Risk Level:5.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________An out-of-bounds write in qfq_change_class in net/sched/sch_qfq.c in Linux Kernel could allow...
IBM WebSphere Application Server cross-site scripting | CVE-2023-24966
NAME__________IBM WebSphere Application Server cross-site scriptingPlatforms Affected:IBM WebSphere Application Server 8.5 IBM WebSphere Application Server 9.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________IBM WebSphere...
Faculty Evaluation System SQL injection | CVE-2023-2366
NAME__________Faculty Evaluation System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Faculty Evaluation System is vulnerable to SQL injection. A remote authenticated attacker...
