OSINT

CVE Alert: CVE-2023-27195

November 9, 2024

Vulnerability Summary: CVE-2023-27195 Trimble TM4Web 22.2.0 allows unauthenticated attackers to access /inc/tm_ajax.msw?func=UserfromUUID&uuid= to retrieve the last registration access code and...

CVE Alert: CVE-2024-21538

November 9, 2024

Vulnerability Summary: CVE-2024-21538 Versions of the package cross-spawn before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due...

CVE Alert: CVE-2020-8007

November 9, 2024

Vulnerability Summary: CVE-2020-8007 The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 5.6.2) is vulnerable...

CVE Alert: CVE-2024-10621

November 9, 2024

Vulnerability Summary: CVE-2024-10621 The Simple Shortcode for Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2024-10994

November 9, 2024

Vulnerability Summary: CVE-2024-10994 A vulnerability has been found in Codezips Online Institute Management System 1.0 and classified as critical. Affected...

CVE Alert: CVE-2024-10993

November 9, 2024

Vulnerability Summary: CVE-2024-10993 A vulnerability, which was classified as critical, was found in Codezips Online Institute Management System 1.0. Affected...

CVE Alert: CVE-2024-10269

November 9, 2024

Vulnerability Summary: CVE-2024-10269 The Easy SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG...

CVE Alert: CVE-2024-7982

November 9, 2024

Vulnerability Summary: CVE-2024-7982 The Registrations for the Events Calendar WordPress plugin before 2.12.4 does not sanitise and escape some parameters...

[BIANLIAN] – Ransomware Victim: ATSG, Inc

November 9, 2024

Ransomware Group: BIANLIAN VICTIM NAME: ATSG, Inc NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[BIANLIAN] – Ransomware Victim: Palmisano & Goodman, P[.]A[.]

November 9, 2024

Ransomware Group: BIANLIAN VICTIM NAME: Palmisano & Goodman, PA NOTE: No files or stolen information are by RedPacket Security. Any...

[BIANLIAN] – Ransomware Victim: Mizuno (USA)

November 9, 2024

Ransomware Group: BIANLIAN VICTIM NAME: Mizuno (USA) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MEOW] – Ransomware Victim: Finger Beton Unternehmensgruppe

November 9, 2024

Ransomware Group: MEOW VICTIM NAME: Finger Beton Unternehmensgruppe NOTE: No files or stolen information are by RedPacket Security. Any legal...

[LYNX] – Ransomware Victim: Siltech (siltechcorp[.]local)

November 9, 2024

Ransomware Group: LYNX VICTIM NAME: Siltech (siltechcorplocal) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[APT73] – Ransomware Victim: emefarmario[.]com[.]br

November 9, 2024

Ransomware Group: APT73 VICTIM NAME: emefarmariocombr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[MEOW] – Ransomware Victim: Karman Inc

November 9, 2024

Ransomware Group: MEOW VICTIM NAME: Karman Inc NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2024-10996

November 9, 2024

Vulnerability Summary: CVE-2024-10996 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been classified as critical....

CVE Alert: CVE-2024-10998

November 9, 2024

Vulnerability Summary: CVE-2024-10998 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been rated as critical....

CVE Alert: CVE-2024-10999

November 9, 2024

Vulnerability Summary: CVE-2024-10999 A vulnerability classified as problematic has been found in CodeAstro Real Estate Management System 1.0. Affected is...

CVE Alert: CVE-2024-10995

November 9, 2024

Vulnerability Summary: CVE-2024-10995 A vulnerability was found in Codezips Hospital Appointment System 1.0 and classified as critical. Affected by this...

CVE Alert: CVE-2024-10997

November 9, 2024

Vulnerability Summary: CVE-2024-10997 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical....

CVE Alert: CVE-2024-24409

November 9, 2024

Vulnerability Summary: CVE-2024-24409 Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers...

CVE Alert: CVE-2024-50588

November 9, 2024

Vulnerability Summary: CVE-2024-50588 An unauthenticated attacker with access to the local network of the medical office can use known default...

CVE Alert: CVE-2024-10187

November 9, 2024

Vulnerability Summary: CVE-2024-10187 The myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give Points, Ranks, Badges,...

CVE Alert: CVE-2024-10839

November 9, 2024

Vulnerability Summary: CVE-2024-10839 Zohocorp ManageEngine SharePoint Manager Plus versions 4503 and prior are vulnerable to authenticated XML External Entity (XXE)...

OSINT

CVE Alert: CVE-2023-27195

CVE Alert: CVE-2024-21538

CVE Alert: CVE-2020-8007

CVE Alert: CVE-2024-10621

CVE Alert: CVE-2024-10994

CVE Alert: CVE-2024-10993

CVE Alert: CVE-2024-10269

CVE Alert: CVE-2024-7982

[BIANLIAN] – Ransomware Victim: ATSG, Inc

[BIANLIAN] – Ransomware Victim: Palmisano & Goodman, P[.]A[.]

[BIANLIAN] – Ransomware Victim: Mizuno (USA)

[MEOW] – Ransomware Victim: Finger Beton Unternehmensgruppe

[LYNX] – Ransomware Victim: Siltech (siltechcorp[.]local)

[APT73] – Ransomware Victim: emefarmario[.]com[.]br

[MEOW] – Ransomware Victim: Karman Inc

CVE Alert: CVE-2024-10996

CVE Alert: CVE-2024-10998

CVE Alert: CVE-2024-10999

CVE Alert: CVE-2024-10995

CVE Alert: CVE-2024-10997

CVE Alert: CVE-2024-24409

CVE Alert: CVE-2024-50588

CVE Alert: CVE-2024-10187

CVE Alert: CVE-2024-10839

[RANSOMHUB] – Ransomware Victim: www[.]americanstandard-us[.]com

[SPACEBEARS] – Ransomware Victim: Christian Community Aid

[CLOP] – Ransomware Victim: JOMARSOFTCORP[.]COM

Microsoft Monthly Security Update (October 2024)

CVE Alert: CVE-2025-21566

You may have missed