Akira Ransomware Victim: Parathon by JDA eHea lth Systems
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Month: August 2023
LockBit 3.0 Ransomware Victim: unicorpusa[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
WPFunnels Plugin for WordPress cross-site scripting | CVE-2023-37977
NAME__________WPFunnels Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WPFunnels Plugin for WordPress 2.7.16Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WPFunnels Plugin for WordPress is vulnerable...
Multiple plugins for WordPress by Inisev cross-site request forgery | CVE-2023-0958
NAME__________Multiple plugins for WordPress by Inisev cross-site request forgeryPlatforms Affected:WordPress Inisev Plugins for WordPressRisk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Multiple plugins for WordPress...
Apple Music for Android information disclosure | CVE-2023-28203
NAME__________Apple Music for Android information disclosurePlatforms Affected:Apple Music for Android 4.1.0Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple Music for Android could allow a...
Variation Images Gallery for WooCommerce Plugin for WordPress cross-site scripting | CVE-2023-37894
NAME__________Variation Images Gallery for WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Variation Images Gallery for WooCommerce Plugin for WordPress 2.3.3Risk...
wpShopGermany IT-RECHT KANZLEI Plugin for WordPress cross-site scripting | CVE-2023-37993
NAME__________wpShopGermany IT-RECHT KANZLEI Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress wpShopGermany IT-RECHT KANZLEI Plugin for WordPress 1.7Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________wpShopGermany IT-RECHT...
Apple macOS Ventura privilege escalation | CVE-2023-37285
NAME__________Apple macOS Ventura privilege escalationPlatforms Affected:Apple macOS Ventura 13.4Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Apple macOS Ventura could allow a local attacker to...
Apple macOS Ventura information disclosure | CVE-2023-32654
NAME__________Apple macOS Ventura information disclosurePlatforms Affected:Apple macOS Ventura 13.4Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple macOS Ventura could allow a local attacker to...
Variation Swatches for WooCommerce Plugin for WordPress cross-site scripting | CVE-2023-37975
NAME__________Variation Swatches for WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WooCommerce Pre-Orders Plugin for WordPress 2.0.2Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Variation Swatches...
Apple macOS Ventura privilege escalation | CVE-2023-36495
NAME__________Apple macOS Ventura privilege escalationPlatforms Affected:Apple macOS Ventura 13.4Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Apple macOS Ventura could allow a local attacker to...
WpStream plugin for WordPress cross-site request forgery | CVE-2023-38512
NAME__________WpStream plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WpStream Plugins for WordPress 4.5.4Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WpStream plugin for WordPress is...
Apple macOS Ventura privilege escalation | CVE-2023-34425
NAME__________Apple macOS Ventura privilege escalationPlatforms Affected:Apple macOS Ventura 13.4Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Apple macOS Ventura could allow a local attacker to...
Perch CMS cross-site scripting |
NAME__________Perch CMS cross-site scriptingPlatforms Affected:Perch CMS Perch CMS 3.2Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Perch CMS is vulnerable to cross-site scripting, caused by...
Apple Safari, watchOS, iOS, iPadOS, tvOS and macOS Ventura cross-site scripting | CVE-2023-32445
NAME__________Apple Safari, watchOS, iOS, iPadOS, tvOS and macOS Ventura cross-site scriptingPlatforms Affected:Apple Safari 16.5.0 Apple iOS 16.5.1 Apple iPadOS 16.5.1...
Radio Forge Muses Player with Skins Plugin for WordPress cross-site scripting | CVE-2023-37976
NAME__________Radio Forge Muses Player with Skins Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Radio Forge Muses Player with Skins Plugin for...
Custom Field For WP Job Manager plugin for WordPress cross-site scripting | CVE-2023-37980
NAME__________Custom Field For WP Job Manager plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Custom Field For WP Job Manager Plugin for...
Authors List Plugin for WordPress cross-site scripting | CVE-2023-37981
NAME__________Authors List Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Authors List Plugin for WordPress 2.0.2Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Authors List Plugin for...
Discourse denial of service | CVE-2023-38684
NAME__________Discourse denial of servicePlatforms Affected:Discourse Discourse 3.1.0.beta6 Discourse Discourse 3.0.5Risk Level:0Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Discourse is vulnerable to a denial of service,...
MF Gig Calendar Plugin for WordPress cross-site scripting | CVE-2023-37970
NAME__________MF Gig Calendar Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress MF Gig Calendar Plugin for WordPress 1.2Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________MF Gig...
D-Link DWA-117 AC600 MU-MIMO privilege escalation | US-CERT VU#813349
NAME__________D-Link DWA-117 AC600 MU-MIMO privilege escalationPlatforms Affected:D-Link DWA-117 AC600 MU-MIMO Wi-Fi USB AdapterRisk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________D-Link DWA-117 AC600 MU-MIMO could...
Discourse security bypass | CVE-2023-37467
NAME__________Discourse security bypassPlatforms Affected:Discourse Discourse 3.1.0.beta6Risk Level:6.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Discourse could allow a remote authenticated attacker to bypass security restrictions, caused...
Apple macOS Ventura security bypass | CVE-2023-32444
NAME__________Apple macOS Ventura security bypassPlatforms Affected:Apple macOS Ventura 13.4Risk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apple macOS Ventura could allow a local attacker to...
Discourse information disclosure | CVE-2023-38685
NAME__________Discourse information disclosurePlatforms Affected:Discourse Discourse 3.1.0.beta6 Discourse Discourse 3.0.5Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Discourse could allow a remote authenticated attacker to obtain...
