Month: June 2023

Cobalt Stike Beacon Detected – 123[.]56[.]83[.]204:7070

June 16, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 47[.]104[.]163[.]239:4321

June 16, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 85[.]217[.]144[.]148:80

June 16, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 8[.]130[.]18[.]110:80

June 16, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3201

June 16, 2023

NAME__________MStore API plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress MStore API Plugin for WordPress 3.9.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________MStore API plugin...

Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients privilege escalation | CVE-2023-34121

June 16, 2023

NAME__________Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients privilege escalationPlatforms Affected:Zoom Zoom for Windows clients 5.13.2 Zoom Zoom...

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3198

June 16, 2023

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3200

June 16, 2023

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3203

June 16, 2023

Grav code execution | CVE-2023-34448

June 16, 2023

NAME__________Grav code executionPlatforms Affected:Grav Grav 1.7.40Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Grav could allow a remote authenticated attacker to execute arbitrary code on...

Jenkins Digital.ai App Management Publisher Plugin cross-site request forgery | CVE-2023-35148

June 16, 2023

NAME__________Jenkins Digital.ai App Management Publisher Plugin cross-site request forgeryPlatforms Affected:Jenkins Digital.ai App Management Publisher Plugin 2.6Risk Level:4.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Digital.ai...

Jenkins Digital.ai App Management Publisher Plugin security bypass | CVE-2023-35149

June 16, 2023

NAME__________Jenkins Digital.ai App Management Publisher Plugin security bypassPlatforms Affected:Jenkins Digital.ai App Management Publisher Plugin 2.6Risk Level:4.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins Digital.ai App...

Grav code execution | CVE-2023-34253

June 16, 2023

Jenkins Dimensions Plugin information disclosure | CVE-2023-32262

June 16, 2023

NAME__________Jenkins Dimensions Plugin information disclosurePlatforms Affected:Jenkins Dimensions Plugin 0.9.3Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins Dimensions Plugin could allow a remote authenticated attacker...

Grav code execution | CVE-2023-34252

June 16, 2023

Office Hours module for Drupal cross-site scripting |

June 16, 2023

NAME__________Office Hours module for Drupal cross-site scriptingPlatforms Affected:Drupal Office Hours module for Drupal 8.x-1.5Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Office Hours module for...

Jenkins AWS CodeCommit Trigger Plugin information disclosure | CVE-2023-35147

June 16, 2023

NAME__________Jenkins AWS CodeCommit Trigger Plugin information disclosurePlatforms Affected:Jenkins AWS CodeCommit Trigger Plugin 3.0.12Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins AWS CodeCommit Trigger Plugin...

Jenkins Team Concert Plugin information disclosure |

June 16, 2023

NAME__________Jenkins Team Concert Plugin information disclosurePlatforms Affected:Jenkins Team Concert Plugin 2.4.1Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Team Concert could allow a remote...

Contiki-NG buffer overflow | CVE-2023-34101

June 16, 2023

NAME__________Contiki-NG buffer overflowPlatforms Affected:Contiki-NG Contiki-NG 4.8Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Contiki-NG is vulnerable to a stack-based buffer overflow, caused by improper bounds...

SUBNET PowerSYSTEM Center cross-site scripting | CVE-2023-32659

June 16, 2023

NAME__________SUBNET PowerSYSTEM Center cross-site scriptingPlatforms Affected:SUBNET PowerSYSTEM CenterRisk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SUBNET PowerSYSTEM Center is vulnerable to cross-site scripting, caused by...

SUBNET PowerSYSTEM Center denial of service | CVE-2023-29158

June 16, 2023

NAME__________SUBNET PowerSYSTEM Center denial of servicePlatforms Affected:SUBNET PowerSYSTEM CenterRisk Level:6.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________SUBNET PowerSYSTEM Center is vulnerable to a denial...

Parity Technologies ink! security bypass | CVE-2023-34449

June 16, 2023

NAME__________Parity Technologies ink! security bypassPlatforms Affected:Parity Technologies ink! 4.2.0Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Parity Technologies ink! could allow a remote attacker to...

Jenkins Dimensions Plugin information disclosure | CVE-2023-32261

June 16, 2023

NAME__________Jenkins Dimensions Plugin information disclosurePlatforms Affected:Jenkins Dimensions Plugin 0.9.3Risk Level:4.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Dimensions Plugin could allow a remote authenticated attacker...

Palo Alto Networks GlobalProtect App for Windows privilege escalation | CVE-2023-0009

June 16, 2023

NAME__________Palo Alto Networks GlobalProtect App for Windows privilege escalationPlatforms Affected:Palo Alto Networks GlobalProtect app for Windows 5.2 Palo Alto Networks...

Month: June 2023

Cobalt Stike Beacon Detected – 123[.]56[.]83[.]204:7070

Cobalt Stike Beacon Detected – 47[.]104[.]163[.]239:4321

Cobalt Stike Beacon Detected – 85[.]217[.]144[.]148:80

Cobalt Stike Beacon Detected – 8[.]130[.]18[.]110:80

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3201

Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients privilege escalation | CVE-2023-34121

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3198

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3200

MStore API plugin for WordPress cross-site request forgery | CVE-2023-3203

Grav code execution | CVE-2023-34448

Jenkins Digital.ai App Management Publisher Plugin cross-site request forgery | CVE-2023-35148

Jenkins Digital.ai App Management Publisher Plugin security bypass | CVE-2023-35149

Grav code execution | CVE-2023-34253

Jenkins Dimensions Plugin information disclosure | CVE-2023-32262

Grav code execution | CVE-2023-34252

Office Hours module for Drupal cross-site scripting |

Jenkins AWS CodeCommit Trigger Plugin information disclosure | CVE-2023-35147

Jenkins Team Concert Plugin information disclosure |

Contiki-NG buffer overflow | CVE-2023-34101

SUBNET PowerSYSTEM Center cross-site scripting | CVE-2023-32659

SUBNET PowerSYSTEM Center denial of service | CVE-2023-29158

Parity Technologies ink! security bypass | CVE-2023-34449

Jenkins Dimensions Plugin information disclosure | CVE-2023-32261

Palo Alto Networks GlobalProtect App for Windows privilege escalation | CVE-2023-0009

[LYNX] – Ransomware Victim: Astaphans

[LYNX] – Ransomware Victim: Jim Thompson

CVE Alert: CVE-2024-57823

CVE Alert: CVE-2024-41787

CVE Alert: CVE-2024-57686

You may have missed