CACTUS Ransomware Victim: www[.]unimarketing[.]ca
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Month: September 2023
CACTUS Ransomware Victim: www[.]leekes[.]co[.]uk
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]geotekusa[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]myinsurancebroker[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]lbhip[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]wardlawclaims[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: cfsigroup[.]ca
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: deeroaks[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Wave AI wave.ai.browser application code execution | CVE-2023-42471
NAME__________Wave AI wave.ai.browser application code executionPlatforms Affected:Wave AI wave.ai.browser 1.0.35Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Wave AI wave.ai.browser application could allow a remote...
Tenda N300 Wireless N VDSL2 Modem Router information disclosure | US-CERT VU#304455
NAME__________Tenda N300 Wireless N VDSL2 Modem Router information disclosurePlatforms Affected:Tenda N300 Wireless N VDSL2 Modem RouterRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Tenda N300...
IBOS SQL injection | CVE-2023-4852
NAME__________IBOS SQL injectionPlatforms Affected:IBOS IBOS 4.5.5Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________IBOS is vulnerable to SQL injection. A remote attacker could send specially...
icms cross-site request forgery | CVE-2023-40953
NAME__________icms cross-site request forgeryPlatforms Affected:iCMS iCMS 7.0.16Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________icms is vulnerable to cross-site request forgery, caused by improper validation...
Redis information disclosure | CVE-2023-41053
NAME__________Redis information disclosurePlatforms Affected:Redis Redis 7.0.0 Redis Redis 7.0.12 Redis Redis 7.2.0Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Redis could allow a local authenticated...
Samsung Exynos Mobile Processor 980 and 2100 denial of service | CVE-2023-40353
NAME__________Samsung Exynos Mobile Processor 980 and 2100 denial of servicePlatforms Affected:Samsung Exynos Mobile Processor 980 Samsung Exynos Mobile Processor 2100Risk...
Imou Life com.mm.android.smartlifeiot app code execution | CVE-2023-42470
NAME__________Imou Life com.mm.android.smartlifeiot app code executionPlatforms Affected:Imou Life com.mm.android.smartlifeiot for Android 6.8.0Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Imou Life com.mm.android.smartlifeiot app could allow...
Mortgage Calculator Estatik Plugin for WordPress cross-site scripting | CVE-2023-40601
NAME__________Mortgage Calculator Estatik Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Mortgage Calculator Estatik Plugin for WordPress 2.0.7Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Mortgage Calculator...
Delinea Secret Server information disclosure | CVE-2023-4588
NAME__________Delinea Secret Server information disclosurePlatforms Affected:Delinea Secret Server 10.9.000002 Delinea Secret Server 11.4.000002Risk Level:6.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Delinea Secret Server could allow...
Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers buffer overflow | CVE-2023-20250
NAME__________Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers buffer overflowPlatforms Affected:Cisco RV110W Wireless-N VPN Firewall Cisco RV130W Wireless-N Multifunction...
Resort Data Online Booking Engine SQL injection | CVE-2023-39423
NAME__________Resort Data Online Booking Engine SQL injectionPlatforms Affected:Resort Data Online Booking EngineRisk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Resort Data Online Booking Engine is...
Frappe SQL injection | CVE-2023-41328
NAME__________Frappe SQL injectionPlatforms Affected:Frappe Frappe 13.46.0 Frappe Frappe 14.19.1Risk Level:4.2Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Frappe is vulnerable to SQL injection. A remote authenticated...
Visualware MyConnection Server XXE information disclosure | CVE-2023-42035
NAME__________Visualware MyConnection Server XXE information disclosurePlatforms Affected:Visualware MyConnection ServerRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Visualware MyConnection Server is vulnerable to an XML External...
WireMock security bypass | CVE-2023-41329
NAME__________WireMock security bypassPlatforms Affected:WireMock WireMock 2.35.0 WireMock WireMock 3.0.2Risk Level:3.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________WireMock could allow a remote authenticated attacker to bypass...
Jenkins Qualys Container Scanning Connector Plugin security bypass | CVE-2023-4777
NAME__________Jenkins Qualys Container Scanning Connector Plugin security bypassPlatforms Affected:Jenkins Qualys Container Scanning Connector Plugin 1.6.2.6Risk Level:7.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins Qualys Container...
Tolgee cross-site scripting | CVE-2023-41316
NAME__________Tolgee cross-site scriptingPlatforms Affected:Tolgee Tolgee 3.29.1Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Tolgee is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
