CISA: Adobe Releases Security Updates for ColdFusion
Adobe Releases Security Updates for ColdFusion On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software....
Year: 2023
CISA: CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed
CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed Today, the Cybersecurity and Infrastructure Security...
CISA: Mozilla Releases Security Updates for Firefox and Thunderbird
Mozilla Releases Security Updates for Firefox and Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird....
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Brute Ratel C4 Detected – 13[.]113[.]204[.]244:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Akira Ransomware Victim: Legacy Mail Manageme nt
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: stsaviationgroup[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Legal Pages Plugin for WordPress cross-site scripting | CVE-2023-47824
NAME__________Legal Pages Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP EXtra Plugin for WordPress 6.4Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Legal Pages Plugin for...
WP EXtra Plugin for WordPress cross-site request forgery | CVE-2023-47825
NAME__________WP EXtra Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP EXtra Plugin for WordPress 6.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WP EXtra Plugin...
eCommerce Product Catalog Plugin for WordPress cross-site scripting | CVE-2023-47839
NAME__________eCommerce Product Catalog Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress eCommerce Product Catalog Plugin for WordPress 3.3.26Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________eCommerce Product...
m-privacy mprivacy-tools security bypass | CVE-2023-47251
NAME__________m-privacy mprivacy-tools security bypassPlatforms Affected:m-privacy GmbH mprivacy-toolsRisk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________m-privacy mprivacy-tools could allow a remote attacker to bypass security restrictions,...
Call Button Plugin for WordPress cross-site scripting | CVE-2023-47829
NAME__________Call Button Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Quick Call Button Plugin for WordPress 1.2.9Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Call Button Plugin...
Email Encoder Bundle Plugin for WordPress cross-site scripting | CVE-2023-47821
NAME__________Email Encoder Bundle Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Email Encoder Bundle Plugin for WordPress 2.1.8Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Email Encoder...
Warptech Industries Warpgate privilege escalation | CVE-2023-48712
NAME__________Warptech Industries Warpgate privilege escalationPlatforms Affected:Warptech Industries Warpgate 0.8.1Risk Level:7.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Warptech Industries Warpgate could allow a remote authenticated attacker...
LOYTEC electronics GmbH L-INX Automation Servers information disclosure | CVE-2023-46388
NAME__________LOYTEC electronics GmbH L-INX Automation Servers information disclosurePlatforms Affected:LOYTEC electronics GmbH LINX-212 6.2.4 LOYTEC electronics GmbH LINX-151 7.2.4Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information...
Quiz And Survey Master Plugin for WordPress cross-site scripting | CVE-2023-47834
NAME__________Quiz And Survey Master Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Quiz And Survey Master Plugin for WordPress 8.1.13Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting...
LOYTEC electronics LINX Configurator information disclosure | CVE-2023-46384
NAME__________LOYTEC electronics LINX Configurator information disclosurePlatforms Affected:LOYTEC electronics GmbH LINX Configurator 7.4.10Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________LOYTEC electronics LINX Configurator could allow...
LOYTEC electronics LINX Configurator information disclosure | CVE-2023-46385
NAME__________LOYTEC electronics LINX Configurator information disclosurePlatforms Affected:LOYTEC electronics GmbH LINX Configurator 7.4.10Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________LOYTEC electronics LINX Configurator could allow...
WordPress Theater Plugin for WordPress cross-site scripting | CVE-2023-47833
NAME__________WordPress Theater Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Quiz And Survey Master Plugin for WordPress 8.1.13Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WordPress Theater...
DrawIt Plugin for WordPress cross-site scripting | CVE-2023-47831
NAME__________DrawIt Plugin for WordPress cross-site scriptingPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________DrawIt Plugin for WordPress is vulnerable to cross-site scripting, caused by...
ARI Stream Quiz Plugin for WordPress cross-site scripting | CVE-2023-47835
NAME__________ARI Stream Quiz Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress ARI Soft ARI Stream Quiz Plugin for WordPress 1.2.32Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting...
LOYTEC electronics LINX Configurator information disclosure | CVE-2023-46383
NAME__________LOYTEC electronics LINX Configurator information disclosurePlatforms Affected:LOYTEC electronics GmbH LINX Configurator 7.4.10Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________LOYTEC electronics LINX Configurator could allow...
LOYTEC electronics GmbH L-INX Automation Servers information disclosure | CVE-2023-46386
NAME__________LOYTEC electronics GmbH L-INX Automation Servers information disclosurePlatforms Affected:LOYTEC electronics GmbH LINX-212 6.2.4 LOYTEC electronics GmbH LINX-151 7.2.4Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information...
LOYTEC electronics GmbH L-INX Automation Servers information disclosure | CVE-2023-46387
NAME__________LOYTEC electronics GmbH L-INX Automation Servers information disclosurePlatforms Affected:LOYTEC electronics GmbH LINX-212 6.2.4 LOYTEC electronics GmbH LINX-151 7.2.4Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information...
