Month: February 2025

CVE Alert: CVE-2025-1282

February 28, 2025

Vulnerability Summary: CVE-2025-1282 The Car Dealer Automotive WordPress Theme – Responsive theme for WordPress is vulnerable to arbitrary file deletion...

CVE Alert: CVE-2024-13734

February 28, 2025

Vulnerability Summary: CVE-2024-13734 The Card Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2025-1690

February 28, 2025

Vulnerability Summary: CVE-2025-1690 The ThemeMakers Stripe Checkout plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'stripe' shortcode...

CVE Alert: CVE-2025-1450

February 28, 2025

Vulnerability Summary: CVE-2025-1450 The Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button, WhatsApp...

CVE Alert: CVE-2024-10918

February 28, 2025

Vulnerability Summary: CVE-2024-10918 Stack-based Buffer Overflow vulnerability in libmodbus v3.1.10 allows to overflow the buffer allocated for the Modbus response...

CVE Alert: CVE-2025-1751

February 28, 2025

Vulnerability Summary: CVE-2025-1751 A SQL Injection vulnerability has been found in Ciges 2.15.5 from ATISoluciones. This vulnerability allows an attacker...

CVE Alert: CVE-2024-13402

February 28, 2025

Vulnerability Summary: CVE-2024-13402 The Buddyboss Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link_title’ parameter in...

CVE Alert: CVE-2025-1738

February 28, 2025

Vulnerability Summary: CVE-2025-1738 A Password Transmitted over Query String vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity,...

CVE Alert: CVE-2025-1739

February 28, 2025

Vulnerability Summary: CVE-2025-1739 An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity. This vulnerability allows...

CVE Alert: CVE-2024-13217

February 28, 2025

Vulnerability Summary: CVE-2024-13217 The Jeg Elementor Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up...

CVE Alert: CVE-2025-1693

February 28, 2025

Vulnerability Summary: CVE-2025-1693 The MongoDB Shell may be susceptible to control character injection where an attacker with control over the...

CVE Alert: CVE-2025-1692

February 28, 2025

Vulnerability Summary: CVE-2025-1692 The MongoDB Shell may be susceptible to control character injection where an attacker with control of the...

CVE Alert: CVE-2025-22280

February 28, 2025

Vulnerability Summary: CVE-2025-22280 Missing Authorization vulnerability in revmakx DefendWP Firewall allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects...

CVE Alert: CVE-2025-1691

February 28, 2025

Vulnerability Summary: CVE-2025-1691 The MongoDB Shell may be susceptible to control character injection where an attacker with control of the...

CVE Alert: CVE-2024-9334

February 28, 2025

Vulnerability Summary: CVE-2024-9334 Use of Hard-coded Credentials, Storage of Sensitive Data in a Mechanism without Access Control vulnerability in E-Kent...

CVE Alert: CVE-2024-56810

February 28, 2025

Vulnerability Summary: CVE-2024-56810 IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error...

CVE Alert: CVE-2024-56495

February 28, 2025

Vulnerability Summary: CVE-2024-56495 IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error...

CVE Alert: CVE-2024-13148

February 28, 2025

Vulnerability Summary: CVE-2024-13148 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yukseloglu Filter B2B...

CVE Alert: CVE-2024-56496

February 28, 2025

Vulnerability Summary: CVE-2024-56496 IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error...

CVE Alert: CVE-2024-56494

February 28, 2025

Vulnerability Summary: CVE-2024-56494 IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error...

[QILIN] – Ransomware Victim: Lee Enterprises

February 28, 2025

Ransomware Group: QILIN VICTIM NAME: Lee Enterprises NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[CLOP] – Ransomware Victim: SAMSCLU[.]COM

February 28, 2025

Ransomware Group: CLOP VICTIM NAME: SAMSCLUCOM NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Meta E2 F

February 28, 2025

Ransomware Group: AKIRA VICTIM NAME: Meta E2 F NOTE: No files or stolen information are by RedPacket Security. Any legal...

[CLOP] – Ransomware Victim: TALLTAILSDOG[.]COM

February 28, 2025

Ransomware Group: CLOP VICTIM NAME: TALLTAILSDOGCOM NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Month: February 2025

CVE Alert: CVE-2025-1282

CVE Alert: CVE-2024-13734

CVE Alert: CVE-2025-1690

CVE Alert: CVE-2025-1450

CVE Alert: CVE-2024-10918

CVE Alert: CVE-2025-1751

CVE Alert: CVE-2024-13402

CVE Alert: CVE-2025-1738

CVE Alert: CVE-2025-1739

CVE Alert: CVE-2024-13217

CVE Alert: CVE-2025-1693

CVE Alert: CVE-2025-1692

CVE Alert: CVE-2025-22280

CVE Alert: CVE-2025-1691

CVE Alert: CVE-2024-9334

CVE Alert: CVE-2024-56810

CVE Alert: CVE-2024-56495

CVE Alert: CVE-2024-13148

CVE Alert: CVE-2024-56496

CVE Alert: CVE-2024-56494

[QILIN] – Ransomware Victim: Lee Enterprises

[CLOP] – Ransomware Victim: SAMSCLU[.]COM

[AKIRA] – Ransomware Victim: Meta E2 F

[CLOP] – Ransomware Victim: TALLTAILSDOG[.]COM

[LYNX] – Ransomware Victim: La Unión

[FLOCKER] – Ransomware Victim: K**d[.]edu

[FOG] – Ransomware Victim: Central McGowan (centralmcgowan[.]com)

[FLOCKER] – Ransomware Victim: S********e[.]com

[FOG] – Ransomware Victim: Klesk Metal Stamping Co (kleskmetalstamping[.]com)

You may have missed