CVE Alert: CVE-2024-13505
Vulnerability Summary: CVE-2024-13505 The Survey Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘ays_sections’ parameter in...
OSINT
CVE Alert: CVE-2024-11641
Vulnerability Summary: CVE-2024-11641 The VikBooking Hotel Booking Engine & PMS plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
CVE Alert: CVE-2024-12334
Vulnerability Summary: CVE-2024-12334 The WC Affiliate – A Complete WooCommerce Affiliate Plugin plugin for WordPress is vulnerable to Reflected Cross-Site...
CVE Alert: CVE-2024-11936
Vulnerability Summary: CVE-2024-11936 The Zox News theme for WordPress is vulnerable to unauthorized modification of data that can lead to...
CVE Alert: CVE-2024-31906
Vulnerability Summary: CVE-2024-31906 IBM Automation Decision Services 23.0.2 allows web pages to be stored locally which can be read by...
CVE Alert: CVE-2017-20196
Vulnerability Summary: CVE-2017-20196 A vulnerability was found in Itechscripts School Management Software 2.75. It has been classified as critical. This...
CVE Alert: CVE-2023-38009
Vulnerability Summary: CVE-2023-38009 IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the middle...
CVE Alert: CVE-2023-50946
Vulnerability Summary: CVE-2023-50946 IBM Common Licensing 9.0 could allow an authenticated user to modify a configuration file that they should...
CVE Alert: CVE-2023-50945
Vulnerability Summary: CVE-2023-50945 IBM Common Licensing 9.0 stores user credentials in plain clear text which can be read by a...
CVE Alert: CVE-2025-0720
Vulnerability Summary: CVE-2025-0720 A vulnerability was found in Microword eScan Antivirus 7.0.32 on Linux. It has been rated as problematic....
[RANSOMHOUSE] – Ransomware Victim: AIshu, Eshoo
Ransomware Group: RANSOMHOUSE VICTIM NAME: AIshu, Eshoo NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[EVEREST] – Ransomware Victim: Weeks, Brucker & Coleman, Ltd | Legal Services
Ransomware Group: EVEREST VICTIM NAME: Weeks, Brucker & Coleman, Ltd | Legal Services NOTE: No files or stolen information are...
[FUNKSEC] – Ransomware Victim: achieverssciencejournal[.]org
Ransomware Group: FUNKSEC VICTIM NAME: achieverssciencejournalorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: International AIDS Vaccine Initiative (iavi[.]org)
Ransomware Group: INCRANSOM VICTIM NAME: International AIDS Vaccine Initiative (iaviorg) NOTE: No files or stolen information are by RedPacket Security....
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on December 19, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Fortinet Releases Security Updates for FortiManager
Fortinet Releases Security Updates for FortiManager Fortinet released a security update to address a vulnerability in FortiManager. A remote cyber...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Vulnerability to the KEV Catalog
CISA Adds One Vulnerability to the KEV Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on January 10, 2025. These...
CISA: Ivanti Releases Security Updates for Connect Secure, Policy Secure, and ZTA Gateways
Ivanti Releases Security Updates for Connect Secure, Policy Secure, and ZTA Gateways Ivanti released security updates to address vulnerabilities (CVE-2025-0282,...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on January 7, 2025. These...
