[BIANLIAN] – Ransomware Victim: NESCTC Security Services
Ransomware Group: BIANLIAN VICTIM NAME: NESCTC Security Services NOTE: No files or stolen information are by RedPacket Security. Any legal...
Year: 2025
[THREEAM] – Ransomware Victim: corehandf[.]com
Ransomware Group: THREEAM VICTIM NAME: corehandfcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: Shinsung Delta Tech
Ransomware Group: LYNX VICTIM NAME: Shinsung Delta Tech NOTE: No files or stolen information are by RedPacket Security. Any legal...
[LYNX] – Ransomware Victim: Banfi Vintners
Ransomware Group: LYNX VICTIM NAME: Banfi Vintners NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-22794
Vulnerability Summary: CVE-2025-22794 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Landoweb Programador World Cup Predictor...
CVE Alert: CVE-2025-23645
Vulnerability Summary: CVE-2025-23645 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Optimize Worldwide Find Content IDs...
CVE Alert: CVE-2025-22664
Vulnerability Summary: CVE-2025-22664 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Survey Maker team Survey Maker...
CVE Alert: CVE-2025-22700
Vulnerability Summary: CVE-2025-22700 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Traveler Code....
CVE Alert: CVE-2025-22730
Vulnerability Summary: CVE-2025-22730 Missing Authorization vulnerability in Ksher Ksher allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-24602
Vulnerability Summary: CVE-2025-24602 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP24 WP24 Domain Check allows...
CVE Alert: CVE-2025-24677
Vulnerability Summary: CVE-2025-24677 Improper Control of Generation of Code ('Code Injection') vulnerability in WPSpins Post/Page Copying Tool allows Remote Code...
CVE Alert: CVE-2025-24599
Vulnerability Summary: CVE-2025-24599 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tribulant Newsletters allows Reflected XSS....
CVE Alert: CVE-2025-24598
Vulnerability Summary: CVE-2025-24598 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in brandtoss WP Mailster allows Reflected...
CVE Alert: CVE-2025-24648
Vulnerability Summary: CVE-2025-24648 Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE) allows Privilege Escalation. This issue affects...
HackerOne Bug Bounty Disclosure: cve-gzip-integer-overflow-z
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:z2_Link to Submitters Profile:https://hackerone.com/z2_ Report Title:CVE-2025-0725: gzip integer overflowReport Link:https://hackerone.com/reports/2956023Date Submitted:05 February...
HackerOne Bug Bounty Disclosure: weak-credentials-found-in-jenkins-endpoint-sweetheart
Company Name: IBM Company HackerOne URL: https://hackerone.com/ibm Submitted By:sweetheart1337_Link to Submitters Profile:https://hackerone.com/sweetheart1337_ Report Title:Weak credentials found in Jenkins endpointReport Link:https://hackerone.com/reports/2954547Date...
[RANSOMHUB] – Ransomware Victim: annegrady[.]org
Ransomware Group: RANSOMHUB VICTIM NAME: annegradyorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: rablighting[.]com
Ransomware Group: QILIN VICTIM NAME: rablightingcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[APT73] – Ransomware Victim: boostheat[.]com
Ransomware Group: APT73 VICTIM NAME: boostheatcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-23059
Vulnerability Summary: CVE-2025-23059 A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager exposes directories containing...
CVE Alert: CVE-2024-45659
Vulnerability Summary: CVE-2024-45659 IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain...
CVE Alert: CVE-2025-0364
Vulnerability Summary: CVE-2025-0364 BigAntSoft BigAnt Server, up to and including version 5.6.06, is vulnerable to unauthenticated remote code execution via...
CVE Alert: CVE-2025-23060
Vulnerability Summary: CVE-2025-23060 A vulnerability in HPE Aruba Networking ClearPass Policy Manager may, under certain circumstances, expose sensitive unencrypted information....
CVE Alert: CVE-2025-23058
Vulnerability Summary: CVE-2025-23058 A vulnerability in the ClearPass Policy Manager web-based management interface allows a low-privileged (read-only) authenticated remote attacker...
