Moodle server-side request forgery | CVE-2023-35133
NAME__________Moodle server-side request forgeryPlatforms Affected:Moodle Moodle 3.9 Moodle Moodle 3.11 Moodle Moodle 4.0 Moodle Moodle 4.1 Moodle Moodle 3.11.14 Moodle...
Year: 2023
Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance cross-site scripting | CVE-2023-20120
NAME__________Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance cross-site scriptingPlatforms Affected:Cisco Secure Email...
Flask-AppBuilder information disclosure | CVE-2023-34110
NAME__________Flask-AppBuilder information disclosurePlatforms Affected:Flask-AppBuilder Flask-AppBuilder 4.3.1Risk Level:2.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Flask-AppBuilder could allow a remote authenticated attacker to obtain sensitive information, caused...
Silicon Labs Z/IP Gateway buffer overflow | CVE-2023-0970
NAME__________Silicon Labs Z/IP Gateway buffer overflowPlatforms Affected:Silicon Labs Z/IP Gateway 7.18.01Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Silicon Labs Z/IP Gateway is vulnerable to...
Fortra Globalscape EFT information disclosure | CVE-2023-2991
NAME__________Fortra Globalscape EFT information disclosurePlatforms Affected:Fortra Globalscape EFT 8.1.0.14Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortra Globalscape EFT could allow a remote attacker to...
Fortra Globalscape EFT denial of service | CVE-2023-2990
NAME__________Fortra Globalscape EFT denial of servicePlatforms Affected:Fortra Globalscape EFT 8.1.0.14Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Fortra Globalscape EFT is vulnerable to a...
Silicon Labs Z/IP Gateway information disclosure | CVE-2023-0969
NAME__________Silicon Labs Z/IP Gateway information disclosurePlatforms Affected:Silicon Labs Z/IP Gateway 7.18.01Risk Level:3.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Silicon Labs Z/IP Gateway could allow a...
Moodle cross-site scripting | CVE-2023-35131
NAME__________Moodle cross-site scriptingPlatforms Affected:Moodle Moodle 3.11 Moodle Moodle 4.0 Moodle Moodle 4.1 Moodle Moodle 3.11.14 Moodle Moodle 4.0.8 Moodle Moodle...
Moodle SQL injection | CVE-2023-35132
NAME__________Moodle SQL injectionPlatforms Affected:Moodle Moodle 3.9 Moodle Moodle 3.11 Moodle Moodle 4.0 Moodle Moodle 4.1 Moodle Moodle 3.11.14 Moodle Moodle...
NOESCAPE Ransomware Victim: Promotion Fulfillment Center
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
NOESCAPE Ransomware Victim: Credit Team
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
NOESCAPE Ransomware Victim: Cyril Johnston Hire
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Phishing Attacks
Phishing Attacks Phishing attacks are among the most common methods used by cybercriminals to steal personal information, financial data, and...
CISA orders agencies to patch iPhone bugs abused in spyware attacks
Today, CISA ordered federal agencies to patch recently patched security vulnerabilities exploited as zero-days to deploy Triangulation spyware on iPhones...
MOVEIt breach impacts Genworth, CalPERS as data for 3.2 million exposed
PBI Research Services (PBI) has suffered a data breach with three clients disclosing that the data for 4.75 million people...
Fortinet fixes critical FortiNAC remote command execution flaw
Cybersecurity solutions company Fortinet has updated its zero-trust access solution FortiNAC to address a critical-severity vulnerability that attackers could leverage...
FBI seizes BreachForums after arresting its owner Pompompurin in March
U.S. law enforcement today seized the clear web domain of the notorious BreachForums (aka Breached) hacking forum three months after...
University of Manchester confirms data theft in recent cyberattack
Image: Ax Sharma The University of Manchester finally confirmed that attackers behind a cyberattack disclosed in early June had stolen...
American Airlines, Southwest Airlines disclose data breaches affecting pilots
American Airlines and Southwest Airlines, two of the largest airlines in the world, disclosed data breaches on Friday caused by the...
LastPass users furious after being locked out due to MFA resets
LastPass password manager users have been experiencing significant login issues starting early May after being prompted to reset their authenticator...
Grafana warns of critical auth bypass due to Azure AD integration
Grafana has released security fixes for multiple versions of its application, addressing a vulnerability that enables attackers to bypass authentication...
The Week in Ransomware – June 23rd 2023 – The Reddit Files
It was a relatively quiet week regarding ransomware news, with the BlackCat ransomware gang extorting Reddit and the ongoing MOVEit...
The Power of Browser Fingerprinting: Personalized UX, Fraud Detection, and Secure Logins
The case for browser fingerprinting: personalizing user experience, improving fraud detection, and optimizing login security Have you ever heard of...
U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog
The U.S. Cybersecurity and Infrastructure Security Agency has added a batch of six flaws to its Known Exploited Vulnerabilities (KEV)...
