CVE Alert: CVE-2024-54205
Vulnerability Summary: CVE-2024-54205 Cross-Site Request Forgery (CSRF) vulnerability in Paloma Paloma Widget allows Cross Site Request Forgery.This issue affects Paloma...
Month: December 2024
CVE Alert: CVE-2024-53826
Vulnerability Summary: CVE-2024-53826 Missing Authorization vulnerability in WPSight WPCasa allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPCasa:...
CVE Alert: CVE-2024-54216
Vulnerability Summary: CVE-2024-54216 Path Traversal vulnerability in NotFound ARForms allows Path Traversal.This issue affects ARForms: from n/a through 6.4.1. Affected...
HackerOne Bug Bounty Disclosure: cve-apache-airflow-command-injection-in-read-dataset-event-from-classic-dag-nhienit
Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:nhienit2010Link to Submitters Profile:https://hackerone.com/nhienit2010 Report Title:CVE-2024-45498: Apache Airflow Command injection...
[FUNKSEC] – Ransomware Victim: uniamarmores company
Ransomware Group: FUNKSEC VICTIM NAME: uniamarmores company NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[FUNKSEC] – Ransomware Victim: zero5 company
Ransomware Group: FUNKSEC VICTIM NAME: zero5 company NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[RHYSIDA] – Ransomware Victim: Matlock Security Services
Ransomware Group: RHYSIDA VICTIM NAME: Matlock Security Services NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FUNKSEC] – Ransomware Victim: ayswrewards
Ransomware Group: FUNKSEC VICTIM NAME: ayswrewards NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-54212
Vulnerability Summary: CVE-2024-54212 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor alam Magical Addons For...
CVE Alert: CVE-2024-54214
Vulnerability Summary: CVE-2024-54214 Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Revy allows Upload a Web Shell to...
CVE Alert: CVE-2024-54213
Vulnerability Summary: CVE-2024-54213 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in zionbuilder.io WordPress Page Builder –...
CVE Alert: CVE-2024-11738
Vulnerability Summary: CVE-2024-11738 A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic)...
CVE Alert: CVE-2024-54211
Vulnerability Summary: CVE-2024-54211 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visualmodo Borderless allows Cross-Site Scripting...
CVE Alert: CVE-2024-54141
Vulnerability Summary: CVE-2024-54141 phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases....
CVE Alert: CVE-2024-54137
Vulnerability Summary: CVE-2024-54137 liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. A correctness error has...
CVE Alert: CVE-2024-42196
Vulnerability Summary: CVE-2024-42196 HCL Launch stores potentially sensitive information in log files that could be read by a local user...
CVE Alert: CVE-2024-30129
Vulnerability Summary: CVE-2024-30129 The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any...
CVE Alert: CVE-2024-50677
Vulnerability Summary: CVE-2024-50677 A cross-site scripting (XSS) vulnerability in OroPlatform CMS v5.1 allows attackers to execute arbitrary web scripts or...
[INCRANSOM] – Ransomware Victim: Arc Community Services Inc
Ransomware Group: INCRANSOM VICTIM NAME: Arc Community Services Inc NOTE: No files or stolen information are by RedPacket Security. Any...
[FUNKSEC] – Ransomware Victim: FunkLocker
Ransomware Group: FUNKSEC VICTIM NAME: FunkLocker NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: Black Creek Community Health Centre (bcch[.]local)
Ransomware Group: INCRANSOM VICTIM NAME: Black Creek Community Health Centre (bcchlocal) NOTE: No files or stolen information are by RedPacket...
Cobalt Strike Beacon Detected – 43[.]153[.]158[.]146:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]210[.]201[.]45:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 120[.]46[.]212[.]33:9998
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
