CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Month: January 2025
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
[SAFEPAY] – Ransomware Victim: platinumcollision[.]com
Ransomware Group: SAFEPAY VICTIM NAME: platinumcollisioncom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[EVEREST] – Ransomware Victim: Solaris Pharma proof
Ransomware Group: EVEREST VICTIM NAME: Solaris Pharma proof NOTE: No files or stolen information are by RedPacket Security. Any legal...
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
[EVEREST] – Ransomware Victim: Woodlake
Ransomware Group: EVEREST VICTIM NAME: Woodlake NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[EVEREST] – Ransomware Victim: The Hoff Brand SL
Ransomware Group: EVEREST VICTIM NAME: The Hoff Brand SL NOTE: No files or stolen information are by RedPacket Security. Any...
[EVEREST] – Ransomware Victim: Volt Infrastructure
Ransomware Group: EVEREST VICTIM NAME: Volt Infrastructure NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-22780
Vulnerability Summary: CVE-2025-22780 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alexey Yuzhakov wp-pano allows Stored...
CVE Alert: CVE-2025-22779
Vulnerability Summary: CVE-2025-22779 Missing Authorization vulnerability in Ugur CELIK WP News Sliders allows Exploiting Incorrectly Configured Access Control Security Levels.This...
CVE Alert: CVE-2025-22782
Vulnerability Summary: CVE-2025-22782 Unrestricted Upload of File with Dangerous Type vulnerability in Web Ready Now WR Price List Manager For...
CVE Alert: CVE-2025-22761
Vulnerability Summary: CVE-2025-22761 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Olaf Lederer Ajax Contact Form...
CVE Alert: CVE-2025-22781
Vulnerability Summary: CVE-2025-22781 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nativery Developer Nativery allows DOM-Based...
CVE Alert: CVE-2025-22773
Vulnerability Summary: CVE-2025-22773 Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in WPChill Htaccess File Editor allows Exploiting...
CVE Alert: CVE-2025-22788
Vulnerability Summary: CVE-2025-22788 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Codexpert, Inc CoDesigner WooCommerce Builder...
CVE Alert: CVE-2025-22778
Vulnerability Summary: CVE-2025-22778 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lijit Networks Inc. and Crowd...
CVE Alert: CVE-2025-22776
Vulnerability Summary: CVE-2025-22776 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jay Carter WP Bulletin Board...
CVE Alert: CVE-2025-22793
Vulnerability Summary: CVE-2025-22793 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bold Bold pagos en linea...
CISA: CISA Releases Twelve Industrial Control Systems Advisories
CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on January 16, 2025. These...
[SARCOMA] – Ransomware Victim: Dona Formosa
Ransomware Group: SARCOMA VICTIM NAME: Dona Formosa NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-22784
Vulnerability Summary: CVE-2025-22784 Cross-Site Request Forgery (CSRF) vulnerability in Johan Ström Background Control allows Path Traversal.This issue affects Background Control:...
CVE Alert: CVE-2025-22787
Vulnerability Summary: CVE-2025-22787 Missing Authorization vulnerability in bPlugins LLC Button Block allows Accessing Functionality Not Properly Constrained by ACLs.This issue...
CVE Alert: CVE-2025-22786
Vulnerability Summary: CVE-2025-22786 Path Traversal vulnerability in ElementInvader ElementInvader Addons for Elementor allows PHP Local File Inclusion.This issue affects ElementInvader...
CVE Alert: CVE-2025-22785
Vulnerability Summary: CVE-2025-22785 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ComMotion Course Booking...
