CVE Alert: CVE-2024-9619
Vulnerability Summary: CVE-2024-9619 The WP SHAPES plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in...
Month: December 2024
CVE Alert: CVE-2024-12571
Vulnerability Summary: CVE-2024-12571 The Store Locator for WordPress with Google Maps – LotsOfLocales plugin for WordPress is vulnerable to Local...
CVE Alert: CVE-2024-12509
Vulnerability Summary: CVE-2024-12509 The Embed Twine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'embed_twine' shortcode...
CVE Alert: CVE-2024-7726
Vulnerability Summary: CVE-2024-7726 There exists an unauthenticated accessible JTAG port on the Kioxia PM6, PM7 and CM6 devices - On...
CVE Alert: CVE-2024-12014
Vulnerability Summary: CVE-2024-12014 Path Traversal and Insecure Direct Object Reference (IDOR) vulnerabilities in the eSignaViewer component in eSigna product versions...
CVE Alert: CVE-2024-51466
Vulnerability Summary: CVE-2024-51466 IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and 12.0.0 through 12.0.4 is vulnerable to an Expression Language...
CVE Alert: CVE-2024-28767
Vulnerability Summary: CVE-2024-28767 IBM Security Directory Integrator 7.2.0 through 7.2.0.13 and 10.0.0 through 10.0.3 could allow a remote authenticated attacker...
[ABYSS] – Ransomware Victim: berkotfoods[.]com
Ransomware Group: ABYSS VICTIM NAME: berkotfoodscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: news[.]gdi[.]gov[.]kh
Ransomware Group: FUNKSEC VICTIM NAME: newsgdigovkh NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: fusioncharts[.]com
Ransomware Group: FUNKSEC VICTIM NAME: fusionchartscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[KILLSEC] – Ransomware Victim: Abrasive Supply Corporation
Ransomware Group: KILLSEC VICTIM NAME: Abrasive Supply Corporation NOTE: No files or stolen information are by RedPacket Security. Any legal...
[KILLSEC] – Ransomware Victim: Albert Paper Company
Ransomware Group: KILLSEC VICTIM NAME: Albert Paper Company NOTE: No files or stolen information are by RedPacket Security. Any legal...
[KILLSEC] – Ransomware Victim: Badger Popcorn And Concession Supply Company
Ransomware Group: KILLSEC VICTIM NAME: Badger Popcorn And Concession Supply Company NOTE: No files or stolen information are by RedPacket...
[KILLSEC] – Ransomware Victim: Allied Packing And Rubber Inc
Ransomware Group: KILLSEC VICTIM NAME: Allied Packing And Rubber Inc NOTE: No files or stolen information are by RedPacket Security....
[KILLSEC] – Ransomware Victim: Avana Electrotek
Ransomware Group: KILLSEC VICTIM NAME: Avana Electrotek NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[FUNKSEC] – Ransomware Victim: carsbeat[.]com
Ransomware Group: FUNKSEC VICTIM NAME: carsbeatcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-56348
Vulnerability Summary: CVE-2024-56348 In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of unauthorized agents Affected Endpoints: No...
CVE Alert: CVE-2024-40695
Vulnerability Summary: CVE-2024-40695 IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and 12.0.0 through 12.0.4 could be vulnerable to malicious file...
CVE Alert: CVE-2024-56351
Vulnerability Summary: CVE-2024-56351 In JetBrains TeamCity before 2024.12 access tokens were not revoked after removing user roles Affected Endpoints: No...
CVE Alert: CVE-2024-56352
Vulnerability Summary: CVE-2024-56352 In JetBrains TeamCity before 2024.12 stored XSS was possible via image name on the agent details page...
CVE Alert: CVE-2024-56350
Vulnerability Summary: CVE-2024-56350 In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2024-56349
Vulnerability Summary: CVE-2024-56349 In JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logs Affected Endpoints:...
CVE Alert: CVE-2024-56355
Vulnerability Summary: CVE-2024-56355 In JetBrains TeamCity before 2024.12 missing Content-Type header in RemoteBuildLogController response could lead to XSS Affected Endpoints:...
CVE Alert: CVE-2024-56356
Vulnerability Summary: CVE-2024-56356 In JetBrains TeamCity before 2024.12 insecure XMLParser configuration could lead to potential XXE attack Affected Endpoints: No...
