CVE Alert: CVE-2024-56049
Vulnerability Summary: CVE-2024-56049 Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5.2....
Month: December 2024
CVE Alert: CVE-2024-56050
Vulnerability Summary: CVE-2024-56050 Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to...
CVE Alert: CVE-2024-56048
Vulnerability Summary: CVE-2024-56048 Missing Authorization vulnerability in VibeThemes WPLMS allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPLMS:...
CVE Alert: CVE-2024-56055
Vulnerability Summary: CVE-2024-56055 Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5.2....
CVE Alert: CVE-2024-56057
Vulnerability Summary: CVE-2024-56057 Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to...
CVE Alert: CVE-2024-56047
Vulnerability Summary: CVE-2024-56047 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VibeThemes WPLMS allows...
CVE Alert: CVE-2024-56054
Vulnerability Summary: CVE-2024-56054 Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to...
Cobalt Strike Beacon Detected – 124[.]222[.]164[.]43:6667
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 92[.]118[.]170[.]81:54322
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]238[.]103[.]180:54322
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 120[.]46[.]212[.]33:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]35[.]228[.]105:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 147[.]45[.]47[.]88:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]200[.]193[.]211:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Posh C2 Detected – 185[.]147[.]124[.]104:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
CVE Alert: CVE-2024-12741
Vulnerability Summary: CVE-2024-12741 A deserialization of untrusted data vulnerability exists in NI DAQExpress that may result in remote code execution....
CVE Alert: CVE-2024-52579
Vulnerability Summary: CVE-2024-52579 Misskey is an open source, federated social media platform. Some APIs using `HttpRequestService` do not properly check...
CVE Alert: CVE-2024-49363
Vulnerability Summary: CVE-2024-49363 Misskey is an open source, federated social media platform. In affected versions FileServerService (media proxy) in github.com/misskey-dev/misskey...
CVE Alert: CVE-2024-56053
Vulnerability Summary: CVE-2024-56053 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VibeThemes WPLMS allows...
CVE Alert: CVE-2024-51470
Vulnerability Summary: CVE-2024-51470 IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD, IBM MQ Appliance...
CVE Alert: CVE-2024-53270
Vulnerability Summary: CVE-2024-53270 Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions `sendOverloadError` is going to assume the active...
CVE Alert: CVE-2024-53269
Vulnerability Summary: CVE-2024-53269 Envoy is a cloud-native high-performance edge/middle/service proxy. When additional address are not ip addresses, then the Happy...
CVE Alert: CVE-2024-53271
Vulnerability Summary: CVE-2024-53271 Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy does not properly handle http 1.1...
CVE Alert: CVE-2024-56140
Vulnerability Summary: CVE-2024-56140 Astro is a web framework for content-driven websites. In affected versions a bug in Astro’s CSRF-protection middleware...
