CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses
2024 CWE Top 25 Most Dangerous Software Weaknesses The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Homeland...
threatintel
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CovenantC2 Detected – 58[.]65[.]172[.]131:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
[SAFEPAY] – Ransomware Victim: titlenine[.]com
Ransomware Group: SAFEPAY VICTIM NAME: titleninecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-10886
Vulnerability Summary: CVE-2024-10886 The Tribute Testimonials – WordPress Testimonial Grid/Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
CVE Alert: CVE-2024-10961
Vulnerability Summary: CVE-2024-10961 The Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and...
CVE Alert: CVE-2024-10874
Vulnerability Summary: CVE-2024-10874 The Quotes llama plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'quotes-llama' shortcode...
CVE Alert: CVE-2024-11362
Vulnerability Summary: CVE-2024-11362 The Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net plugin for WordPress is vulnerable...
CVE Alert: CVE-2024-10869
Vulnerability Summary: CVE-2024-10869 The WordPress Brute Force Protection – Stop Brute Force Attacks plugin for WordPress is vulnerable to Reflected...
CVE Alert: CVE-2024-11265
Vulnerability Summary: CVE-2024-11265 The Increase Maximum Upload File Size | Increase Execution Time plugin for WordPress is vulnerable to Full...
CVE Alert: CVE-2024-11408
Vulnerability Summary: CVE-2024-11408 The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slotti' shortcode...
CVE Alert: CVE-2024-9223
Vulnerability Summary: CVE-2024-9223 The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a missing...
[EVEREST] – Ransomware Victim: STIIIZY
Ransomware Group: EVEREST VICTIM NAME: STIIIZY NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[EVEREST] – Ransomware Victim: Concord Orthopaedics
Ransomware Group: EVEREST VICTIM NAME: Concord Orthopaedics NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[INCRANSOM] – Ransomware Victim: Pastor Real Estate
Ransomware Group: INCRANSOM VICTIM NAME: Pastor Real Estate NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2024-10880
Vulnerability Summary: CVE-2024-10880 The JobBoardWP – Job Board Listings and Submissions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting...
CVE Alert: CVE-2024-11361
Vulnerability Summary: CVE-2024-11361 The PDF Invoices & Packing Slips Generator for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site...
CVE Alert: CVE-2024-11332
Vulnerability Summary: CVE-2024-11332 The HIPAA Compliant Forms with Drag’n’Drop HIPAA Form Builder. Sign HIPAA documents plugin for WordPress is vulnerable...
CVE Alert: CVE-2024-10873
Vulnerability Summary: CVE-2024-10873 The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all...
CVE Alert: CVE-2024-11387
Vulnerability Summary: CVE-2024-11387 The Easy Liveblogs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'elb_liveblog' shortcode...
CVE Alert: CVE-2024-10803
Vulnerability Summary: CVE-2024-10803 The MP3 Sticky Player plugin for WordPress is vulnerable to Directory Traversal in all versions up to,...
CVE Alert: CVE-2024-9942
Vulnerability Summary: CVE-2024-9942 The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file uploads due...
CVE Alert: CVE-2024-11426
Vulnerability Summary: CVE-2024-11426 The AutoListicle: Automatically Update Numbered List Articles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
