threatintel

CVE Alert: CVE-2025-25156

February 8, 2025

Vulnerability Summary: CVE-2025-25156 Cross-Site Request Forgery (CSRF) vulnerability in Stanko Metodiev Quote Comments allows Stored XSS. This issue affects Quote...

CVE Alert: CVE-2025-1107

February 8, 2025

Vulnerability Summary: CVE-2025-1107 Unverified password change vulnerability in Janto, versions prior to r12. This could allow an unauthenticated attacker to...

CVE Alert: CVE-2025-1103

February 8, 2025

Vulnerability Summary: CVE-2025-1103 A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function...

CVE Alert: CVE-2025-25166

February 8, 2025

Vulnerability Summary: CVE-2025-25166 Cross-Site Request Forgery (CSRF) vulnerability in gabrieldarezzo InLocation allows Stored XSS. This issue affects InLocation: from n/a...

CVE Alert: CVE-2025-1108

February 8, 2025

Vulnerability Summary: CVE-2025-1108 Insufficient data authenticity verification vulnerability in Janto, versions prior to r12. This allows an unauthenticated attacker to...

CVE Alert: CVE-2024-10383

February 8, 2025

Vulnerability Summary: CVE-2024-10383 An issue has been discovered in the gitlab-web-ide-vscode-fork component distributed over CDN affecting all versions prior to...

[FLOCKER] – Ransomware Victim: R******e[.]tw

February 8, 2025

Ransomware Group: FLOCKER VICTIM NAME: R******etw NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[HUNTERS] – Ransomware Victim: SAKAI SOUKEN Co[.]

February 8, 2025

Ransomware Group: HUNTERS VICTIM NAME: SAKAI SOUKEN Co NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2022-26388

February 8, 2025

Vulnerability Summary: CVE-2022-26388 A use of hard-coded password vulnerability may allow authentication abuse.This issue affects ELI 380 Resting Electrocardiograph: Versions...

CVE Alert: CVE-2022-26389

February 8, 2025

Vulnerability Summary: CVE-2022-26389 An improper access control vulnerability may allow privilege escalation.This issue affects: * ELI 380 Resting Electrocardiograph: Versions...

CVE Alert: CVE-2024-9664

February 8, 2025

Vulnerability Summary: CVE-2024-9664 The WP All Import Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions...

CVE Alert: CVE-2024-7419

February 8, 2025

Vulnerability Summary: CVE-2024-7419 The WP ALL Export Pro plugin for WordPress is vulnerable to Remote Code Execution in all versions...

CVE Alert: CVE-2024-9661

February 8, 2025

Vulnerability Summary: CVE-2024-9661 The WP All Import Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...

CVE Alert: CVE-2021-27017

February 8, 2025

Vulnerability Summary: CVE-2021-27017 Utilization of a module presented a security risk by allowing the deserialization of untrusted/user supplied data. This...

CVE Alert: CVE-2025-1105

February 8, 2025

Vulnerability Summary: CVE-2025-1105 A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by this issue...

CVE Alert: CVE-2025-1106

February 8, 2025

Vulnerability Summary: CVE-2025-1106 A vulnerability classified as critical has been found in CmsEasy 7.7.7.9. This affects the function deletedir_action/restore_action in...

CVE Alert: CVE-2024-7425

February 8, 2025

Vulnerability Summary: CVE-2024-7425 The WP ALL Export Pro plugin for WordPress is vulnerable to unauthorized modification of data that can...

CVE Alert: CVE-2025-1104

February 8, 2025

Vulnerability Summary: CVE-2025-1104 A vulnerability has been found in D-Link DHP-W310AV 1.04 and classified as critical. This vulnerability affects unknown...

[FLOCKER] – Ransomware Victim: G*********7[.]com

February 8, 2025

Ransomware Group: FLOCKER VICTIM NAME: G*********7com NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[FLOCKER] – Ransomware Victim: M****s[.]info

February 8, 2025

Ransomware Group: FLOCKER VICTIM NAME: M****sinfo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-25183

February 8, 2025

Vulnerability Summary: CVE-2025-25183 vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Maliciously constructed statements can lead...

CVE Alert: CVE-2025-24366

February 8, 2025

Vulnerability Summary: CVE-2025-24366 SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of...

CVE Alert: CVE-2024-57279

February 8, 2025

Vulnerability Summary: CVE-2024-57279 A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the LDAP User Manager

CVE Alert: CVE-2024-57278

February 8, 2025

Vulnerability Summary: CVE-2024-57278 A reflected Cross-Site Scripting (XSS) vulnerability exists in /webscan/sqlmap/index.html in QingScan

threatintel

CVE Alert: CVE-2025-25156

CVE Alert: CVE-2025-1107

CVE Alert: CVE-2025-1103

CVE Alert: CVE-2025-25166

CVE Alert: CVE-2025-1108

CVE Alert: CVE-2024-10383

[FLOCKER] – Ransomware Victim: R******e[.]tw

[HUNTERS] – Ransomware Victim: SAKAI SOUKEN Co[.]

CVE Alert: CVE-2022-26388

CVE Alert: CVE-2022-26389

CVE Alert: CVE-2024-9664

CVE Alert: CVE-2024-7419

CVE Alert: CVE-2024-9661

CVE Alert: CVE-2021-27017

CVE Alert: CVE-2025-1105

CVE Alert: CVE-2025-1106

CVE Alert: CVE-2024-7425

CVE Alert: CVE-2025-1104

[FLOCKER] – Ransomware Victim: G*********7[.]com

[FLOCKER] – Ransomware Victim: M****s[.]info

CVE Alert: CVE-2025-25183

CVE Alert: CVE-2025-24366

CVE Alert: CVE-2024-57279

CVE Alert: CVE-2024-57278

CVE Alert: CVE-2025-24892

CVE Alert: CVE-2025-21693

CVE Alert: CVE-2024-11831

CVE Alert: CVE-2024-12133

CVE Alert: CVE-2025-25186

You may have missed