[FUNKSEC] – Ransomware Victim: behind funksec
Ransomware Group: FUNKSEC VICTIM NAME: behind funksec NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Year: 2025
HackerOne Bug Bounty Disclosure: unauthenticated-path-traversal-and-command-injection-in-trellix-enterprise-security-manager-r-v
Company Name: Trellix Company HackerOne URL: https://hackerone.com/trellix Submitted By:r4vLink to Submitters Profile:https://hackerone.com/r4v Report Title:Unauthenticated Path Traversal and Command Injection in...
CVE Alert: CVE-2024-42168
Vulnerability Summary: CVE-2024-42168 HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. An attacker can deploy a web server...
CVE Alert: CVE-2024-12204
Vulnerability Summary: CVE-2024-12204 The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for...
CVE Alert: CVE-2024-42169
Vulnerability Summary: CVE-2024-42169 HCL MyXalytics is affected by insecure direct object references. It occurs due to missing access control checks,...
CVE Alert: CVE-2024-12627
Vulnerability Summary: CVE-2024-12627 The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for...
CVE Alert: CVE-2024-11327
Vulnerability Summary: CVE-2024-11327 The ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages plugin...
CVE Alert: CVE-2024-42170
Vulnerability Summary: CVE-2024-42170 HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs...
CVE Alert: CVE-2024-12505
Vulnerability Summary: CVE-2024-12505 The Trackserver plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tsmap' shortcode in...
CVE Alert: CVE-2024-12472
Vulnerability Summary: CVE-2024-12472 The Post Duplicator plugin for WordPress is vulnerable to Information Exposure in all versions up to, and...
CVE Alert: CVE-2024-12404
Vulnerability Summary: CVE-2024-12404 The CF Internal Link Shortcode plugin for WordPress is vulnerable to SQL Injection via the 'post_title' parameter...
CVE Alert: CVE-2024-12304
Vulnerability Summary: CVE-2024-12304 The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable...
[FUNKSEC] – Ransomware Victim: wissenhive[.]com
Ransomware Group: FUNKSEC VICTIM NAME: wissenhivecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: Now you can also visit Funksec on Clearnet funksec[.]top
Ransomware Group: FUNKSEC VICTIM NAME: Now you can also visit Funksec on Clearnet funksectop NOTE: No files or stolen information...
Cobalt Strike Beacon Detected – 82[.]156[.]0[.]140:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]135[.]237[.]16:2222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 87[.]120[.]115[.]8:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 3[.]76[.]191[.]166:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-42172
Vulnerability Summary: CVE-2024-42172 HCL MyXalytics is affected by broken authentication. It allows attackers to compromise keys, passwords, and session tokens,...
CVE Alert: CVE-2024-42173
Vulnerability Summary: CVE-2024-42173 HCL MyXalytics is affected by an improper password policy implementation vulnerability. Weak passwords and lack of account...
CVE Alert: CVE-2024-11386
Vulnerability Summary: CVE-2024-11386 The GatorMail SmartForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'gatormailsmartform' shortcode...
CVE Alert: CVE-2024-42171
Vulnerability Summary: CVE-2024-42171 HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs...
CVE Alert: CVE-2024-42174
Vulnerability Summary: CVE-2024-42174 HCL MyXalytics is affected by username enumeration vulnerability. This allows a malicious user to perform enumeration of...
CVE Alert: CVE-2024-11874
Vulnerability Summary: CVE-2024-11874 The Grid Accordion Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'grid_accordion'...
