CVE Alert: CVE-2024-51681
Vulnerability Summary: CVE-2024-51681 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeRevolution WP Pocket...
CVE Alert: CVE-2024-45887
Vulnerability Summary: CVE-2024-45887 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-45888
Vulnerability Summary: CVE-2024-45888 DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi`...
CVE Alert: CVE-2024-51682
Vulnerability Summary: CVE-2024-51682 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes HT Builder...
CVE Alert: CVE-2024-51685
Vulnerability Summary: CVE-2024-51685 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Accordion...
CVE Alert: CVE-2024-51678
Vulnerability Summary: CVE-2024-51678 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Marcel Pol Elo...
CVE Alert: CVE-2024-51680
Vulnerability Summary: CVE-2024-51680 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CrestaProject – Rizzo...
CVE Alert: CVE-2024-51683
Vulnerability Summary: CVE-2024-51683 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Custom...
CVE Alert: CVE-2024-10765
Vulnerability Summary: CVE-2024-10765 A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This...
[EMBARGO] – Ransomware Victim: Memorial Hospital & Manor
Ransomware Group: EMBARGO VICTIM NAME: Memorial Hospital & Manor NOTE: No files or stolen information are by RedPacket Security. Any...
[MEDUSA] – Ransomware Victim: McMillan Electric Company
Ransomware Group: MEDUSA VICTIM NAME: McMillan Electric Company NOTE: No files or stolen information are by RedPacket Security. Any legal...
Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages
An ongoing campaign is targeting npm developers with hundreds of typosquat versions of their legitimate counterparts in an attempt to...
Canadian Suspect Arrested Over Snowflake Data Breach and Extortion Attacks
Canadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from...
CVE Alert: CVE-2024-10768
Vulnerability Summary: CVE-2024-10768 A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown...
CVE Alert: CVE-2024-10764
Vulnerability Summary: CVE-2024-10764 A vulnerability classified as critical has been found in Codezips Online Institute Management System 1.0. This affects...
CVE Alert: CVE-2024-10766
Vulnerability Summary: CVE-2024-10766 A vulnerability, which was classified as critical, has been found in Codezips Free Exam Hall Seating Management...
CVE Alert: CVE-2024-51328
Vulnerability Summary: CVE-2024-51328 Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management System v1.0 allows remote attacker to inject...
CVE Alert: CVE-2024-48336
Vulnerability Summary: CVE-2024-48336 The install() function of ProviderInstaller.java in Magisk App before canary version 27007 does not verify the GMS...
CVE Alert: CVE-2024-45086
Vulnerability Summary: CVE-2024-45086 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML external entity injection (XXE) attack...
CVE Alert: CVE-2024-51744
Vulnerability Summary: CVE-2024-51744 golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in `ParseWithClaims`...
CVE Alert: CVE-2024-51500
Vulnerability Summary: CVE-2024-51500 Meshtastic firmware is a device firmware for the Meshtastic project. The Meshtastic firmware does not check for...
CVE Alert: CVE-2024-10805
Vulnerability Summary: CVE-2024-10805 A vulnerability was found in code-projects University Event Management System 1.0. It has been classified as critical....
CVE Alert: CVE-2024-10791
Vulnerability Summary: CVE-2024-10791 A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This...
[FLOCKER] – Ransomware Victim: d****I
Ransomware Group: FLOCKER VICTIM NAME: d****I NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...