QakBot Threat Actors Still in Action, Using Ransom Knight and Remcos RAT in Latest Attacks
Despite the disruption to its infrastructure, the threat actors behind the QakBot malware have been linked to an ongoing phishing...
Month: October 2023
Atlassian Confluence Hit by New Actively Exploited Zero-Day – Patch Now
Atlassian has released fixes to contain an actively exploited critical zero-day flaw impacting publicly accessible Confluence Data Center and Server...
Guyana Governmental Entity Hit by DinodasRAT in Cyber Espionage Attack
A governmental entity in Guyana has been targeted as part of a cyber espionage campaign dubbed Operation Jacana. The activity,...
Analysis and Config Extraction of Lu0Bot, a Node.js Malware with Considerable Capabilities
Nowadays, more malware developers are using unconventional programming languages to bypass advanced detection systems. The Node.js malware Lu0Bot is a...
Apple Rolls Out Security Patches for Actively Exploited iOS Zero-Day Flaw
Apple on Wednesday rolled out security patches to address a new zero-day flaw in iOS and iPadOS that it said...
CISA Warns of Active Exploitation of JetBrains and Windows Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws to its Known Exploited Vulnerabilities (KEV)...
GoldDigger Android Trojan Targets Banking Apps in Asia Pacific Countries
A new Android banking trojan named GoldDigger has been found targeting several financial applications with an aim to siphon victims'...
Akira Ransomware Victim: Gruskin Group
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
IBM FileNet Content Manager cross-site scripting | CVE-2023-35905
NAME__________IBM FileNet Content Manager cross-site scriptingPlatforms Affected:IBM FileNet Content Manager 5.5.8 IBM FileNet Content Manager 5.5.10 IBM FileNet Content Manager...
IBM Disconnected Log Collector information disclosure | CVE-2022-22447
NAME__________IBM Disconnected Log Collector information disclosurePlatforms Affected:IBM Disconnected Log Collector 1.0 IBM Disconnected Log Collector 1.8.2Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Disconnected...
Images Slideshow by 2J plugin for WordPress cross-site scripting | CVE-2023-44242
NAME__________Images Slideshow by 2J plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Images Slideshow by 2J plugin for WordPress 1.3.54 WordPress Images...
phpMyFAQ cross-site scripting | CVE-2023-5320
NAME__________phpMyFAQ cross-site scriptingPlatforms Affected:phpMyFAQ phpMyFAQ 2.9.0 phpMyFAQ phpMyFAQ 2.9.6 phpMyFAQ phpMyFAQ 2.9.8 phpMyFAQ phpMyFAQ 2.9.9 phpMyFAQ phpMyFAQ 2.9.10 phpMyFAQ phpMyFAQ...
Blog Filter Plugin for WordPress cross-site scripting | CVE-2023-5295
NAME__________Blog Filter Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress facebook-comment-by-vivacity Plugin for WordPress 1.4Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Blog Filter Plugin for WordPress...
SonicWall Net Extender Windows privilege escalation | CVE-2023-44217
NAME__________SonicWall Net Extender Windows privilege escalationPlatforms Affected:SonicWall NetExtender Windows 10.2.336Risk Level:7.9Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________SonicWall Net Extender Windows could allow a local...
Contractor Contact Form Website to Workflow Tool plugin for WordPress cross-site scripting | CVE-2023-44245
NAME__________Contractor Contact Form Website to Workflow Tool plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Contractor Contact Form Website to Workflow Tool...
phpMyFAQ cross-site scripting | CVE-2023-5319
NAME__________phpMyFAQ cross-site scriptingPlatforms Affected:phpMyFAQ phpMyFAQ 2.9.0 phpMyFAQ phpMyFAQ 2.9.6 phpMyFAQ phpMyFAQ 2.9.8 phpMyFAQ phpMyFAQ 2.9.9 phpMyFAQ phpMyFAQ 2.9.10 phpMyFAQ phpMyFAQ...
FooGallery plugin for WordPress cross-site scripting | CVE-2023-44244
NAME__________FooGallery plugin for WordPress cross-site scriptingPlatforms Affected:WordPress FooGallery Plugin for WordPress 1.8.12 WordPress FooGallery Plugin for WordPress 2.0.30 WordPress FooGallery...
animal-art-lab spoofing | CVE-2023-43297
NAME__________animal-art-lab spoofingPlatforms Affected:animal-art-lab animal-art-lab 13.6.1Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________animal-art-lab could allow a remote attacker to conduct spoofing attacks, caused by the...
mosparo open redirect | CVE-2023-5375
NAME__________mosparo open redirectPlatforms Affected:mosparo mosparo 1.0.1Risk Level:4.3Exploitability:UnprovenConsequences:Other DESCRIPTION__________mosparo could allow a remote attacker to conduct phishing attacks, caused by an...
Dolibarr ERP/CRM cross-site scripting | CVE-2023-5323
NAME__________Dolibarr ERP/CRM cross-site scriptingPlatforms Affected:Dolibarr Dolibarr ERP/CRM 18.0.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Dolibarr ERP/CRM is vulnerable to cross-site scripting, caused by improper...
Qualcomm Chipsets code execution | CVE-2023-33035
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm WCD9380 Qualcomm WSA8830 Qualcomm WSA8835 Qualcomm AQT1000 Qualcomm CSRB31024 Qualcomm WCD9370 Qualcomm WCD9375 Qualcomm WCD9385Risk...
Ministry of Health, Labour and Welfare FD Application XML external entity injection | CVE-2023-42132
NAME__________Ministry of Health, Labour and Welfare FD Application XML external entity injectionPlatforms Affected:Ministry of Health Labour and Welfare FD Application...
FURUNO SYSTEMS wireless LAN access point devices directory traversal | CVE-2023-43627
NAME__________FURUNO SYSTEMS wireless LAN access point devices directory traversalPlatforms Affected:FURUNO SYSTEMS ACERA 1320 01.26 FURUNO SYSTEMS ACERA 1310 01.26Risk Level:6.8Exploitability:UnprovenConsequences:Obtain...
Click To Tweet Plugin for WordPress cross-site scripting | CVE-2023-41856
NAME__________Click To Tweet Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Click To Tweet Plugin for WordPress 2.0.14Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Click To...
