Month: April 2024

Sliver C2 Detected – 104[.]131[.]162[.]214:31337

April 2, 2024

The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...

CISA: CISA Publishes New Webpage Dedicated to Providing Resources for High-Risk Communities

April 2, 2024

CISA Publishes New Webpage Dedicated to Providing Resources for High-Risk Communities Today, CISA published a new dedicated High-Risk Communities webpage...

Black Basta Ransomware Victim: pdq-airspares[.]co[.]uk

April 2, 2024

Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Play Ransomware Victim: Boingo Graphics

April 2, 2024

Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

CovenantC2 Detected – 47[.]116[.]25[.]208:7443

April 2, 2024

The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...

Sliver C2 Detected – 143[.]198[.]129[.]61:31337

April 2, 2024

The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...

Sliver C2 Detected – 45[.]141[.]87[.]84:31337

April 2, 2024

The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...

Sliver C2 Detected – 14[.]225[.]218[.]123:31337

April 2, 2024

The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...

Brute Ratel C4 Detected – 13[.]113[.]189[.]83:80

April 2, 2024

The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...

GeoNode cross-site scripting | CVE-2024-27091

April 2, 2024

NAME__________GeoNode cross-site scriptingPlatforms Affected:GeoNode GeoNode 3.2.0 GeoNode GeoNode 4.2.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________GeoNode is vulnerable to cross-site scripting, caused by improper...

Sydney Toolbox Plugin for WordPress cross-site scripting | CVE-2024-2936

April 2, 2024

NAME__________Sydney Toolbox Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Sydney Toolbox Plugin for WordPress 1.26Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Sydney Toolbox Plugin for...

Elementor Website Builder Plugin for WordPress cross-site scripting | CVE-2024-1364

April 2, 2024

NAME__________Elementor Website Builder Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Elementor Website Builder Pro Plugin for WordPress 3.20.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Elementor...

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2144

April 2, 2024

NAME__________ Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scriptingPlatforms Affected: WordPress Ultimate Addons for Beaver Builder Plugin for...

EmbedPress Plugin for WordPress cross-site scripting | CVE-2024-2688

April 2, 2024

NAME__________EmbedPress Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress EmbedPress Plugin for WordPress 3.9.12Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________EmbedPress Plugin for WordPress is vulnerable...

Easy Appointments addons Plugin for WordPress cross-site scripting | CVE-2024-2842

April 2, 2024

NAME__________Easy Appointments addons Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Easy Appointments Plugin for WordPress 3.11.18Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Easy Appointments Plugin...

Saleor information disclosure | CVE-2024-29888

April 2, 2024

NAME__________Saleor information disclosurePlatforms Affected:saleor saleorRisk Level:4.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Saleor could allow a remote attacker to obtain sensitive information, caused by a...

Elementor Addon Elements Plugin for WordPress cross-site scripting | CVE-2024-2091

April 2, 2024

NAME__________Elementor Addon Elements Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Elementor Addon Elements Plugin for WordPress 1.13.1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Elementor Addon...

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2141

April 2, 2024

NAME__________ Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scriptingPlatforms Affected: WordPress Ultimate Addons for Beaver Builder Plugin for...

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2143

April 2, 2024

NAME__________ Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scriptingPlatforms Affected: WordPress Ultimate Addons for Beaver Builder Plugin for...

helm information disclosure | CVE-2019-25210

April 2, 2024

NAME__________helm information disclosurePlatforms Affected:Helm Helm 3.0.0 Helm Helm 3.14.2Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________helm could allow a remote attacker to obtain sensitive...

The Page Builder by SiteOrigin Plugin for WordPress cross-site scripting | CVE-2024-2202

April 2, 2024

NAME__________The Page Builder by SiteOrigin Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress The Page Builder by SiteOrigin plugin for WordPress 2.29.6Risk...

NodeBB security bypass |

April 2, 2024

NAME__________NodeBB security bypassPlatforms Affected:NodeBB NodeBB 3.6.7Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________NodeBB could allow a remote authenticated attacker to bypass security restrictions, caused...

Cockpit command execution | CVE-2024-2947

April 2, 2024

NAME__________Cockpit command executionPlatforms Affected:Cockpit Cockpit 270Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cockpit could allow a local authenticated attacker to execute arbitrary commands on...

Elementor Website Builder Pro Plugin for WordPress cross-site scripting | CVE-2024-1521

April 2, 2024

NAME__________Elementor Website Builder Pro Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Elementor Website Builder Pro Plugin for WordPress 3.20.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting...

Month: April 2024

Sliver C2 Detected – 104[.]131[.]162[.]214:31337

CISA: CISA Publishes New Webpage Dedicated to Providing Resources for High-Risk Communities

Black Basta Ransomware Victim: pdq-airspares[.]co[.]uk

Play Ransomware Victim: Boingo Graphics

CovenantC2 Detected – 47[.]116[.]25[.]208:7443

Sliver C2 Detected – 143[.]198[.]129[.]61:31337

Sliver C2 Detected – 45[.]141[.]87[.]84:31337

Sliver C2 Detected – 14[.]225[.]218[.]123:31337

Brute Ratel C4 Detected – 13[.]113[.]189[.]83:80

GeoNode cross-site scripting | CVE-2024-27091

Sydney Toolbox Plugin for WordPress cross-site scripting | CVE-2024-2936

Elementor Website Builder Plugin for WordPress cross-site scripting | CVE-2024-1364

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2144

EmbedPress Plugin for WordPress cross-site scripting | CVE-2024-2688

Easy Appointments addons Plugin for WordPress cross-site scripting | CVE-2024-2842

Saleor information disclosure | CVE-2024-29888

Elementor Addon Elements Plugin for WordPress cross-site scripting | CVE-2024-2091

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2141

Ultimate Addons for Beaver Builder Plugin for WordPress cross-site scripting | CVE-2024-2143

helm information disclosure | CVE-2019-25210

The Page Builder by SiteOrigin Plugin for WordPress cross-site scripting | CVE-2024-2202

NodeBB security bypass |

Cockpit command execution | CVE-2024-2947

Elementor Website Builder Pro Plugin for WordPress cross-site scripting | CVE-2024-1521

[RANSOMHUB] – Ransomware Victim: www[.]americanstandard-us[.]com

[SPACEBEARS] – Ransomware Victim: Christian Community Aid

[CLOP] – Ransomware Victim: JOMARSOFTCORP[.]COM

Microsoft Monthly Security Update (October 2024)

CVE Alert: CVE-2025-21566

You may have missed