CVE Alert: CVE-2025-23915
Vulnerability Summary: CVE-2025-23915 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Roninwp...
Year: 2025
CVE Alert: CVE-2025-23917
Vulnerability Summary: CVE-2025-23917 Missing Authorization vulnerability in Chandrika Guntur, Morgan Kay Chamber Dashboard Business Directory allows Exploiting Incorrectly Configured Access...
CVE Alert: CVE-2025-23916
Vulnerability Summary: CVE-2025-23916 Missing Authorization vulnerability in Nuanced Media WP Meetup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...
CVE Alert: CVE-2025-23930
Vulnerability Summary: CVE-2025-23930 Missing Authorization vulnerability in iTechArt-Group PayPal Marketing Solutions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...
CVE Alert: CVE-2025-23913
Vulnerability Summary: CVE-2025-23913 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pankajpragma, rahulpragma WordPress...
[APT73] – Ransomware Victim: fol-23[.]fr
Ransomware Group: APT73 VICTIM NAME: fol-23fr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
[FUNKSEC] – Ransomware Victim: aquamanaesp[.]gov[.]co
Ransomware Group: FUNKSEC VICTIM NAME: aquamanaespgovco NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: Divimast
Ransomware Group: AKIRA VICTIM NAME: Divimast NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: VODOTEHNIKA D[.]D[.]
Ransomware Group: AKIRA VICTIM NAME: VODOTEHNIKA DD NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-23929
Vulnerability Summary: CVE-2025-23929 Missing Authorization vulnerability in wishfulthemes Email Capture & Lead Generation allows Exploiting Incorrectly Configured Access Control Security...
CVE Alert: CVE-2025-23926
Vulnerability Summary: CVE-2025-23926 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TC Ajax WP Query Search...
CVE Alert: CVE-2025-23928
Vulnerability Summary: CVE-2025-23928 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Arsovski Google Org Chart...
CVE Alert: CVE-2025-23927
Vulnerability Summary: CVE-2025-23927 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Massimo Serpilli Incredible Font Awesome...
CVE Alert: CVE-2025-23925
Vulnerability Summary: CVE-2025-23925 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jimmy Peña Feedburner Optin Form...
CVE Alert: CVE-2025-23939
Vulnerability Summary: CVE-2025-23939 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saiem Khan Image Switcher allows...
CVE Alert: CVE-2025-23924
Vulnerability Summary: CVE-2025-23924 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jérémy Heleine WP Photo Sphere...
CVE Alert: CVE-2025-23936
Vulnerability Summary: CVE-2025-23936 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Harun R. Rayhan (Cr@zy Coder)...
CVE Alert: CVE-2025-23935
Vulnerability Summary: CVE-2025-23935 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Magic Plugin Factory Magic Google...
CVE Alert: CVE-2025-23934
Vulnerability Summary: CVE-2025-23934 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PromoSimple Giveaways and Contests by...
[AKIRA] – Ransomware Victim: Vodotechnika
Ransomware Group: AKIRA VICTIM NAME: Vodotechnika NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: Chain And Rope SuppliersLTD
Ransomware Group: AKIRA VICTIM NAME: Chain And Rope SuppliersLTD NOTE: No files or stolen information are by RedPacket Security. Any...
Cobalt Strike Beacon Detected – 118[.]178[.]89[.]212:4434
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 193[.]57[.]57[.]121:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
