CVE Alert: CVE-2024-45890
Vulnerability Summary: CVE-2024-45890 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability This vulnerability occurs when the `action` parameter in...
Month: November 2024
CVE Alert: CVE-2024-51626
Vulnerability Summary: CVE-2024-51626 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mansur Ahamed Woocommerce...
CVE Alert: CVE-2024-45893
Vulnerability Summary: CVE-2024-45893 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-45889
Vulnerability Summary: CVE-2024-45889 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-45891
Vulnerability Summary: CVE-2024-45891 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
Cobalt Strike Beacon Detected – 111[.]229[.]148[.]68:1443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]94[.]168[.]145:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 167[.]71[.]207[.]129:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]91[.]125[.]228:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[RHYSIDA] – Ransomware Victim: Fylde Coast Academy Trust
Ransomware Group: RHYSIDA VICTIM NAME: Fylde Coast Academy Trust NOTE: No files or stolen information are by RedPacket Security. Any...
[RANSOMHUB] – Ransomware Victim: sundt[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: sundtcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Leveraging Wazuh for Zero Trust security
Zero Trust security changes how organizations handle security by doing away with implicit trust while continuously analyzing and validating access...
Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices
Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead...
CVE Alert: CVE-2024-45885
Vulnerability Summary: CVE-2024-45885 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-51681
Vulnerability Summary: CVE-2024-51681 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeRevolution WP Pocket...
CVE Alert: CVE-2024-45887
Vulnerability Summary: CVE-2024-45887 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-45888
Vulnerability Summary: CVE-2024-45888 DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi`...
CVE Alert: CVE-2024-51682
Vulnerability Summary: CVE-2024-51682 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes HT Builder...
CVE Alert: CVE-2024-51685
Vulnerability Summary: CVE-2024-51685 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Accordion...
CVE Alert: CVE-2024-51678
Vulnerability Summary: CVE-2024-51678 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Marcel Pol Elo...
CVE Alert: CVE-2024-51680
Vulnerability Summary: CVE-2024-51680 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CrestaProject – Rizzo...
CVE Alert: CVE-2024-51683
Vulnerability Summary: CVE-2024-51683 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Custom...
CVE Alert: CVE-2024-10765
Vulnerability Summary: CVE-2024-10765 A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This...
[EMBARGO] – Ransomware Victim: Memorial Hospital & Manor
Ransomware Group: EMBARGO VICTIM NAME: Memorial Hospital & Manor NOTE: No files or stolen information are by RedPacket Security. Any...
