CVE Alert: CVE-2024-11349
Vulnerability Summary: CVE-2024-11349 The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including,...
Month: December 2024
CVE Alert: CVE-2024-12846
Vulnerability Summary: CVE-2024-12846 A vulnerability, which was classified as problematic, has been found in Emlog Pro up to 2.4.1. Affected...
CVE Alert: CVE-2024-11196
Vulnerability Summary: CVE-2024-11196 The Multi-column Tag Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's mctagmap...
CVE Alert: CVE-2024-11977
Vulnerability Summary: CVE-2024-11977 The The kk Star Ratings – Rate Post & Collect User Feedbacks plugin for WordPress is vulnerable...
CVE Alert: CVE-2024-12066
Vulnerability Summary: CVE-2024-12066 The SMSA Shipping(official) plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path...
CVE Alert: CVE-2024-11975
Vulnerability Summary: CVE-2024-11975 The Reactflow Visitor Recording and Heatmaps plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
CVE Alert: CVE-2024-11938
Vulnerability Summary: CVE-2024-11938 The One Click Upsell Funnel for WooCommerce – Funnel Builder for WordPress, Create WooCommerce Upsell, Post-Purchase Upsell...
CVE Alert: CVE-2024-11682
Vulnerability Summary: CVE-2024-11682 The G Web Pro Store Locator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the...
CVE Alert: CVE-2024-11287
Vulnerability Summary: CVE-2024-11287 The Ebook Store plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of...
[MONTI] – Ransomware Victim: ibericar
Ransomware Group: MONTI VICTIM NAME: ibericar NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: gtsportcarrental[.]com has been hacked
Ransomware Group: FUNKSEC VICTIM NAME: gtsportcarrentalcom has been hacked NOTE: No files or stolen information are by RedPacket Security. Any...
[FUNKSEC] – Ransomware Victim: Hello twitter
Ransomware Group: FUNKSEC VICTIM NAME: Hello twitter NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[8BASE] – Ransomware Victim: Sicoob
Ransomware Group: 8BASE VICTIM NAME: Sicoob NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Cobalt Strike Beacon Detected – 185[.]73[.]124[.]241:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]153[.]97[.]202:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CovenantC2 Detected – 34[.]132[.]16[.]207:443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2024-12771
Vulnerability Summary: CVE-2024-12771 The eCommerce Product Catalog Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
CVE Alert: CVE-2024-12262
Vulnerability Summary: CVE-2024-12262 The Ebook Store plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'step' parameter in...
CVE Alert: CVE-2024-12635
Vulnerability Summary: CVE-2024-12635 The WP Docs plugin for WordPress is vulnerable to time-based SQL Injection via the 'dir_id' parameter in...
CVE Alert: CVE-2024-12697
Vulnerability Summary: CVE-2024-12697 The real.Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and...
CVE Alert: CVE-2024-12721
Vulnerability Summary: CVE-2024-12721 The Custom Product Tabs For WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all...
CVE Alert: CVE-2024-11808
Vulnerability Summary: CVE-2024-11808 The Pingmeter Uptime Monitoring plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the '_wpnonce' parameter...
CVE Alert: CVE-2024-10797
Vulnerability Summary: CVE-2024-10797 The Full Screen Menu for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions...
CVE Alert: CVE-2024-9545
Vulnerability Summary: CVE-2024-9545 The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
