CVE Alert: CVE-2025-2635
Vulnerability Summary: CVE-2025-2635 The Digital License Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use...
Month: March 2025
CVE Alert: CVE-2025-2109
Vulnerability Summary: CVE-2025-2109 The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to Server-Side Request...
CVE Alert: CVE-2025-2756
Vulnerability Summary: CVE-2025-2756 A vulnerability classified as critical has been found in Open Asset Import Library Assimp 5.4.3. This affects...
CVE Alert: CVE-2025-2542
Vulnerability Summary: CVE-2025-2542 The Your Simple SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2022-1804
Vulnerability Summary: CVE-2022-1804 accountsservice no longer drops permissions when writting .pam_environment Affected Endpoints: No affected endpoints listed. Published Date: 3/25/2025,...
CVE Alert: CVE-2024-12169
Vulnerability Summary: CVE-2024-12169 A vulnerability exists in RTU500 IEC 60870-5-104 controlled station functionality and IEC 61850 functionality, that allows an...
CVE Alert: CVE-2024-10037
Vulnerability Summary: CVE-2024-10037 A vulnerability exists in the RTU500 web server component that can cause a denial of service to...
CVE Alert: CVE-2025-1445
Vulnerability Summary: CVE-2025-1445 A vulnerability exists in RTU IEC 61850 client and server functionality that could impact the availability if...
CVE Alert: CVE-2025-27631
Vulnerability Summary: CVE-2025-27631 The TRMTracker web application is vulnerable to LDAP injection attack potentially allowing an attacker to inject code...
CVE Alert: CVE-2024-11499
Vulnerability Summary: CVE-2024-11499 A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker...
Cobalt Strike Beacon Detected – 110[.]41[.]185[.]80:8889
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 148[.]66[.]2[.]194:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 103[.]12[.]149[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 124[.]222[.]129[.]148:10000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 213[.]94[.]218[.]20:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]106[.]229[.]212:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-42533
Vulnerability Summary: CVE-2024-42533 SQL injection vulnerability in the authentication module in Convivance StandVoice 4.5 through 6.2 allows remote attackers to...
CVE Alert: CVE-2025-27632
Vulnerability Summary: CVE-2025-27632 A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header...
CVE Alert: CVE-2025-27633
Vulnerability Summary: CVE-2025-27633 The TRMTracker web application is vulnerable to reflected Cross-site scripting attack. The application allows client-side code injection...
CVE Alert: CVE-2025-22230
Vulnerability Summary: CVE-2025-22230 VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control. A malicious actor...
CVE Alert: CVE-2025-29932
Vulnerability Summary: CVE-2025-29932 In JetBrains GoLand before 2025.1 an XXE during debugging was possible Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2025-2532
Vulnerability Summary: CVE-2025-2532 Luxion KeyShot USDC File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...
CVE Alert: CVE-2025-29635
Vulnerability Summary: CVE-2025-29635 A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execute arbitrary...
CVE Alert: CVE-2025-26742
Vulnerability Summary: CVE-2025-26742 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GhozyLab Gallery for Social Photo...
