Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Month: October 2023
Akira Ransomware Victim: Protector Fire Servi ces
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Visionary Integratio n Professionals
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Southland Integrated Services
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: nirolaw[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Fiber cross-site request forgery | CVE-2023-45128
NAME__________Fiber cross-site request forgeryPlatforms Affected:Fiber Fiber 2.49.2Risk Level:7.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fiber is vulnerable to cross-site request forgery, caused by improper validation...
Nextcloud Server and Enterprise Server information disclosure | CVE-2023-45151
NAME__________Nextcloud Server and Enterprise Server information disclosurePlatforms Affected:Nextcloud Nextcloud Server 25.0.0 Nextcloud Nextcloud Enterprise Server 25.0.0 Nextcloud Nextcloud Server 26.0.0...
Engelsystem weak security | CVE-2023-45659
NAME__________Engelsystem weak securityPlatforms Affected:Engelsystem EngelsystemRisk Level:3.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Engelsystem could provide weaker than expected security, caused by insufficient session expiration. A...
Discourse denial of service | CVE-2023-44388
NAME__________Discourse denial of servicePlatforms Affected:Discourse Discourse 3.1.0.beta6 Discourse Discourse 3.1.0 Discourse Discourse 3.1.1 Discourse Discourse 3.2.0.beta2Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Discourse...
Funnelforms Free Plugin for WordPress cross-site scripting | CVE-2023-4950
NAME__________Funnelforms Free Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Funnelforms Free Plugin for WordPress 3.3Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Funnelforms Free Plugin for...
Discourse information disclosure | CVE-2023-44391
NAME__________Discourse information disclosurePlatforms Affected:Discourse Discourse 3.1.0.beta6 Discourse Discourse 3.1.0 Discourse Discourse 3.1.1 Discourse Discourse 3.2.0.beta2Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Discourse could allow...
Taggbox Plugin for WordPress cross-site request forgery | CVE-2023-45763
NAME__________Taggbox Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Taggbox Plugin for WordPress 2.9Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Taggbox Plugin for WordPress is...
Nextcloud Mail denial of service | CVE-2023-45660
NAME__________Nextcloud Mail denial of servicePlatforms Affected:Nextcloud Mail 2.0.0 Nextcloud Mail 2.2.7 Nextcloud Mail 3.0.0 Nextcloud Mail 3.2.7Risk Level:4.3Exploitability:UnprovenConsequences:Denial of Service...
Oracle Database Server unspecified | CVE-2023-22071
NAME__________Oracle Database Server unspecifiedPlatforms Affected:Oracle Database Server 19.3 Oracle Database Server 19.19 Oracle Database Server 21.3 Oracle Database Server 21.10...
Engelsystem server-side request forgery | CVE-2023-45152
NAME__________Engelsystem server-side request forgeryPlatforms Affected:Engelsystem EngelsystemRisk Level:2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Nextcloud is vulnerable to server-side request forgery, caused by a flaw in...
WooODT Lite Plugin for WordPress cross-site scripting | CVE-2023-45006
NAME__________WooODT Lite Plugin for WordPress cross-site scriptingPlatforms Affected:Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WooODT Lite Plugin for WordPress is vulnerable to cross-site scripting,...
Red Lion Europe mbCONNECT24 and mymbCONNECT24 and Helmholz myREX24 and myREX24.virtual information disclosure | CVE-2023-4834
NAME__________Red Lion Europe mbCONNECT24 and mymbCONNECT24 and Helmholz myREX24 and myREX24.virtual information disclosurePlatforms Affected:Red Lion Europe mbCONNECT24 2.14.2 Red Lion...
Discourse information disclosure | CVE-2023-43814
NAME__________Discourse information disclosurePlatforms Affected:Discourse Discourse 3.1.0.beta6 Discourse Discourse 3.1.0 Discourse Discourse 3.1.1 Discourse Discourse 3.2.0.beta2Risk Level:3.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Discourse could allow...
File Manager Pro Plugin for WordPress cross-site scripting | CVE-2023-4862
NAME__________File Manager Pro Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress File Manager Pro Plugin for WordPress 1.8.1Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________File Manager...
SoNice Etiquetage module for PrestaShop directory traversal | CVE-2023-45383
NAME__________SoNice Etiquetage module for PrestaShop directory traversalPlatforms Affected:PrestaShop SoNice Etiquetage module for PrestaShop 2.5.9 PrestaShop SoNice Etiquetage module for PrestaShop...
zchunk code execution | CVE-2023-46228
NAME__________zchunk code executionPlatforms Affected:zchunk zchunk 1.3.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________zchunk could allow a remote attacker to execute arbitrary code on the...
Mattermost Mobile denial of service | CVE-2023-5522
NAME__________Mattermost Mobile denial of servicePlatforms Affected:Mattermost Mattermost MobileRisk Level:4.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mattermost Mobile is vulnerable to a denial of service,...
Nextcloud Calendar denial of service | CVE-2023-45150
NAME__________Nextcloud Calendar denial of servicePlatforms Affected:Nextcloud Calendar 4.4.3Risk Level:4.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Nextcloud Calendar is vulnerable to a denial of service,...
WhitePage Plugin for WordPress cross-site request forgery | CVE-2023-45109
NAME__________WhitePage Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WhitePage Plugin for WordPress 1.1.5Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WhitePage Plugin for WordPress is...
