CVE Alert: CVE-2024-49270
Vulnerability Summary: CVE-2024-49270 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HashThemes Smart Blocks...
OSINT
CVE Alert: CVE-2024-49252
Vulnerability Summary: CVE-2024-49252 : Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Teplitsa of social technologies...
CVE Alert: CVE-2024-49260
Vulnerability Summary: CVE-2024-49260 Unrestricted Upload of File with Dangerous Type vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery...
CVE Alert: CVE-2024-47139
Vulnerability Summary: CVE-2024-47139 A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IQ Configuration utility that...
CVE Alert: CVE-2024-49254
Vulnerability Summary: CVE-2024-49254 Improper Control of Generation of Code ('Code Injection') vulnerability in Sunjianle allows Code Injection.This issue affects ajax-extend:...
CVE Alert: CVE-2024-49258
Vulnerability Summary: CVE-2024-49258 Path Traversal: '.../...//' vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery.This issue affects WordPress Gallery...
CVE Alert: CVE-2024-48744
Vulnerability Summary: CVE-2024-48744 A Reflected Cross Site Scripting (XSS) vulnerability was found in /trms/listed- teachers.php in PHPGurukul Teachers Record Management...
CVE Alert: CVE-2024-9893
Vulnerability Summary: CVE-2024-9893 The Nextend Social Login Pro plugin for WordPress is vulnerable to authentication bypass in all versions up...
Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant
The Russian threat actor known as RomCom has been linked to a new wave of cyber attacks aimed at Ukrainian...
[RANSOMHUB] – Ransomware Victim: www[.]camelotservices[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: wwwcamelotservicescom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: www[.]kersey[.]net
Ransomware Group: RANSOMHUB VICTIM NAME: wwwkerseynet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: www[.]aristoiclassical[.]org
Ransomware Group: RANSOMHUB VICTIM NAME: wwwaristoiclassicalorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: www[.]chiltonisd[.]org
Ransomware Group: RANSOMHUB VICTIM NAME: wwwchiltonisdorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024
Oracle Releases Quarterly Critical Patch Update Advisory for October 2024 Oracle released its quarterly Critical Patch Update Advisory for October...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on October 17, 2024. These...
[RANSOMHUB] – Ransomware Victim: Bigpharmacy[.]com[.]my
Ransomware Group: RANSOMHUB VICTIM NAME: Bigpharmacycommy NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: HiCare[.]net
Ransomware Group: RANSOMHUB VICTIM NAME: HiCarenet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Researchers Uncover Cicada3301 Ransomware Operations and Its Affiliate Program
Cybersecurity researchers have gleaned additional insights into a nascent ransomware-as-a-service (RaaS) called Cicada3301 after successfully gaining access to the group's...
CVE Alert: CVE-2024-49267
Vulnerability Summary: CVE-2024-49267 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in nayon46 Unlimited Addon...
CVE Alert: CVE-2024-49266
Vulnerability Summary: CVE-2024-49266 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thimo Grauerholz WP-Spreadplugin...
CVE Alert: CVE-2024-29155
Vulnerability Summary: CVE-2024-29155 On Microchip RN4870 devices, when more than one consecutive PairReqNoInputNoOutput request is received, the device becomes incapable...
CVE Alert: CVE-2024-45844
Vulnerability Summary: CVE-2024-45844 BIG-IP monitor functionality may allow an attacker to bypass access control restrictions, regardless of the port lockdown...
CVE Alert: CVE-2024-49268
Vulnerability Summary: CVE-2024-49268 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in sunburntkamel disconnected allows...
CVE Alert: CVE-2024-10033
Vulnerability Summary: CVE-2024-10033 A vulnerability was found in aap-gateway. A Cross-site Scripting (XSS) vulnerability exists in the gateway component. This...