RedPacket Security - InfoSec News & Tutorials

ShowDoc cross-site scripting | CVE-2022-0965

March 17, 2022

NAME ShowDoc cross-site scripting Platforms Affected:ShowDoc ShowDoc 1.8.0 ShowDoc ShowDoc 2.4.1 ShowDoc ShowDoc 2.4.2 ShowDoc ShowDoc 2.9.5 ShowDoc ShowDoc 2.8.3...

Arris TR3300 command execution | CVE-2022-26995

March 17, 2022

NAME Arris TR3300 command execution Platforms Affected:Arris TR3300 1.0.13Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Arris TR3300 could allow a remote attacker to...

TIBCO JasperReports Library directory traversal | CVE-2022-22771

March 17, 2022

NAME TIBCO JasperReports Library directory traversal Platforms Affected:TIBCO JasperReports Server 7.9.0 TIBCO JasperReports Server for AWS Marketplace 7.9.0 TIBCO JasperReports...

Arris TR3300 command execution | CVE-2022-27002

March 17, 2022

NAME Arris TR3300 command execution Platforms Affected:Arris TR3300 1.0.13Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Arris TR3300 could allow a remote authenticated attacker...

Bareos security bypass | CVE-2022-24755

March 17, 2022

NAME Bareos security bypass Platforms Affected:Bareos Bareos 18.2 Bareos Bareos 21.0.0 Bareos Bareos 20.0.5 Bareos Bareos 19.2.11Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION...

Totolink routers command execution | CVE-2022-27004

March 17, 2022

NAME Totolink routers command execution Platforms Affected:TOTOLINK X5000R 9.1.0u.6118_B20201102 TOTOLINK A7000R 9.1.0u.6115_B20201022Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Totolink routers could allow a...

ShowDoc cross-site scripting | CVE-2022-0946

March 17, 2022

NAME ShowDoc cross-site scripting Platforms Affected:ShowDoc ShowDoc 1.8.0 ShowDoc ShowDoc 2.4.1 ShowDoc ShowDoc 2.4.2 ShowDoc ShowDoc 2.9.5 ShowDoc ShowDoc 2.8.3...

Arris TR3300 command execution | CVE-2022-27000

March 17, 2022

NAME Arris TR3300 command execution Platforms Affected:Arris TR3300 1.0.13Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Arris TR3300 could allow a remote attacker to...

ShowDoc cross-site scripting | CVE-2022-0964

March 17, 2022

NAME ShowDoc cross-site scripting Platforms Affected:ShowDoc ShowDoc 1.8.0 ShowDoc ShowDoc 2.4.1 ShowDoc ShowDoc 2.4.2 ShowDoc ShowDoc 2.9.5 ShowDoc ShowDoc 2.8.3...

College Website Management System id SQL injection |

March 17, 2022

NAME College Website Management System id SQL injection Platforms Affected:Sourcecodester College Website Management System 1.0Risk Level:9.1Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION College Website...

CRI-O code execution | CVE-2022-0811

March 17, 2022

NAME CRI-O code execution Platforms Affected:CRI-O CRI-O 1.19.0 CRI-O CRI-O 1.19.5 CRI-O CRI-O 1.20.6 CRI-O CRI-O 1.21.5 CRI-O CRI-O 1.22.2...

Arris TR3300 command execution | CVE-2022-27001

March 17, 2022

NAME Arris TR3300 command execution Platforms Affected:Arris TR3300 1.0.13Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Arris TR3300 could allow a remote attacker to...

Kingsoft Internet Security 9 Plus buffer overflow | CVE-2022-25949

March 17, 2022

NAME Kingsoft Internet Security 9 Plus buffer overflow Platforms Affected:Kingsoft Internet Security 9 Plus 2010.06.23.247Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Kingsoft Internet...

LockBit 2.0 Ransomware Victim: www[.]onedoc[.]ch/fr/cabinet-de-groupe/la-chaux-de-fonds/ebi5/cabinet-de-groupe-dr-cosandey-tissot-dr-nobel

March 17, 2022

LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...

LockBit 2.0 Ransomware Victim: taguefamilypractice[.]com

March 17, 2022

LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...