CVE Alert: CVE-2024-47559
Vulnerability Summary: CVE-2024-47559 Authenticated RCE via Path Traversal Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 7:15:10 PM 🔥...
Month: October 2024
CVE Alert: CVE-2024-47975
Vulnerability Summary: CVE-2024-47975 Improper access control validation in firmware of some Solidigm DC Products may allow an attacker with physical...
CVE Alert: CVE-2024-47557
Vulnerability Summary: CVE-2024-47557 Pre-Auth RCE via Path Traversal Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 7:15:10 PM 🔥...
CVE Alert: CVE-2024-47558
Vulnerability Summary: CVE-2024-47558 Authenticated RCE via Path Traversal Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 7:15:10 PM 🔥...
[HUNTERS] – Ransomware Victim: AIUT
Ransomware Group: HUNTERS VICTIM NAME: AIUT NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: Sit & Sleep
Ransomware Group: LYNX VICTIM NAME: Sit & Sleep NOTE: No files or stolen information are by RedPacket Security. Any legal...
[LYNX] – Ransomware Victim: Blain Supply
Ransomware Group: LYNX VICTIM NAME: Blain Supply NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[RANSOMHUB] – Ransomware Victim: okcabstract[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: okcabstractcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
HackerOne Bug Bounty Disclosure: user-api-key-leakage-in-github-commit-leads-to-unauthorized-access-to-sql-telemetry-mozilla-org-anhchangmutrang
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:anhchangmutrangLink to Submitters Profile:https://hackerone.com/anhchangmutrang Report Title:User API Key leakage in Github commit...
HackerOne Bug Bounty Disclosure: html-injection-possible-with-soft-email-confirmations-when-administrator-manually-confirms-attacker-email-address-cryptopone
Company Name: GitLab Company HackerOne URL: https://hackerone.com/gitlab Submitted By:cryptoponeLink to Submitters Profile:https://hackerone.com/cryptopone Report Title:HTML injection possible with soft email confirmations...
HackerOne Bug Bounty Disclosure: redos-due-to-device-detector-parsing-user-agents-afewgoats
Company Name: GitLab Company HackerOne URL: https://hackerone.com/gitlab Submitted By:afewgoatsLink to Submitters Profile:https://hackerone.com/afewgoats Report Title:ReDoS due to device-detector parsing user agentsReport...
HackerOne Bug Bounty Disclosure: maintainer-can-leak-sentry-token-by-changing-the-configured-url-fix-bypass–rpedo
Company Name: GitLab Company HackerOne URL: https://hackerone.com/gitlab Submitted By:70rpedoLink to Submitters Profile:https://hackerone.com/70rpedo Report Title:Maintainer can leak sentry token by changing...
CISA: Avoid Scams After Disaster Strikes
Avoid Scams After Disaster Strikes As hurricanes and other natural disasters occur, CISA urges individuals to remain on alert for...
[MEOW] – Ransomware Victim: Maxdream
Ransomware Group: MEOW VICTIM NAME: Maxdream NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CACTUS] – Ransomware Victim: corporatejobbank[.]com
Ransomware Group: CACTUS VICTIM NAME: corporatejobbankcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CACTUS] – Ransomware Victim: matki[.]co[.]uk
Ransomware Group: CACTUS VICTIM NAME: matkicouk NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-31449
Vulnerability Summary: CVE-2024-31449 Redis is an open source, in-memory database that persists on disk. An authenticated user may use a...
CVE Alert: CVE-2024-31228
Vulnerability Summary: CVE-2024-31228 Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service...
CVE Alert: CVE-2024-45292
Vulnerability Summary: CVE-2024-45292 PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. `\PhpOffice\PhpSpreadsheet\Writer\Html` does not sanitize "javascript:"...
CVE Alert: CVE-2024-47556
Vulnerability Summary: CVE-2024-47556 Pre-Auth RCE via Path Traversal Affected Endpoints: No affected endpoints listed. Published Date: 10/7/2024, 7:15:10 PM 🔥...
CVE Alert: CVE-2024-31227
Vulnerability Summary: CVE-2024-31227 Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may...
CVE Alert: CVE-2024-47976
Vulnerability Summary: CVE-2024-47976 Improper access removal handling in firmware of some Solidigm DC Products may allow an attacker with physical...
CVE Alert: CVE-2024-47971
Vulnerability Summary: CVE-2024-47971 Improper error handling in firmware of some SSD DC Products may allow an attacker to enable denial...
CVE Alert: CVE-2024-47972
Vulnerability Summary: CVE-2024-47972 Improper resource management in firmware of some Solidigm DC Products may allow an attacker to potentially control...
