CVE Alert: CVE-2024-49378
Vulnerability Summary: CVE-2024-49378 smartUp, a web browser mouse gestures extension, has a universal cross-site scripting issue in the Edge and...
CVE Alert: CVE-2024-49753
Vulnerability Summary: CVE-2024-49753 Zitadel is open-source identity infrastructure software. Versions prior to 2.64.1, 2.63.6, 2.62.8, 2.61.4, 2.60.4, 2.59.5, and 2.58.7...
CVE Alert: CVE-2024-10380
Vulnerability Summary: CVE-2024-10380 A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0....
CVE Alert: CVE-2024-10374
Vulnerability Summary: CVE-2024-10374 The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpmem_loginout...
CVE Alert: CVE-2024-48579
Vulnerability Summary: CVE-2024-48579 SQL Injection vulnerability in Best House rental management system project in php v.1.0 allows a remote attacker...
CVE Alert: CVE-2024-49757
Vulnerability Summary: CVE-2024-49757 The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. Due to a missing...
CVE Alert: CVE-2024-48580
Vulnerability Summary: CVE-2024-48580 SQL Injection vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute...
CVE Alert: CVE-2022-30355
Vulnerability Summary: CVE-2022-30355 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...
CVE Alert: CVE-2024-48204
Vulnerability Summary: CVE-2024-48204 SQL injection vulnerability in Hanzhou Haobo network management system 1.0 allows a remote attacker to execute arbitrary...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CERT-UA Identifies Malicious RDP Files in Latest Attack on Ukrainian Entities
The Computer Emergency Response Team of Ukraine (CERT-UA) has detailed a new malicious email campaign targeting government agencies, enterprises, and...
SEC Charges 4 Companies Over Misleading SolarWinds Cyber Attack Disclosures
The U.S. Securities and Exchange Commission (SEC) has charged four current and former public companies for making "materially misleading disclosures"...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2023-26248
Vulnerability Summary: CVE-2023-26248 The Kademlia DHT (go-libp2p-kad-dht 0.20.0 and earlier) used in IPFS (0.18.1 and earlier) assigns routing information for...
CVE Alert: CVE-2024-8036
Vulnerability Summary: CVE-2024-8036 ABB is aware of privately reported vulnerabilities in the product versions referenced in this CVE. An attacker...
CVE Alert: CVE-2024-48581
Vulnerability Summary: CVE-2024-48581 File Upload vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute...
CVE Alert: CVE-2024-10386
Vulnerability Summary: CVE-2024-10386 CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The vulnerability could allow a threat actor...
CVE Alert: CVE-2022-30357
Vulnerability Summary: CVE-2022-30357 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...
CVE Alert: CVE-2024-47821
Vulnerability Summary: CVE-2024-47821 pyLoad is a free and open-source Download Manager. The folder `/.pyload/scripts` has scripts which are run when...
CVE Alert: CVE-2024-10387
Vulnerability Summary: CVE-2024-10387 CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor...
CVE Alert: CVE-2024-9584
Vulnerability Summary: CVE-2024-9584 The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of...
CVE Alert: CVE-2024-9585
Vulnerability Summary: CVE-2024-9585 The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function...
CVE Alert: CVE-2024-48654
Vulnerability Summary: CVE-2024-48654 Cross Site Scripting vulnerability in Blood Bank v.1 allows a remote attacker to execute arbitrary code via...