CVE Alert: CVE-2025-28938
Vulnerability Summary: CVE-2025-28938 Missing Authorization vulnerability in Bjoern WP Performance Pack allows Exploiting Incorrectly Configured Access Control Security Levels. This...
threatintel
CVE Alert: CVE-2025-28937
Vulnerability Summary: CVE-2025-28937 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in lavacode Lava Ajax Search allows...
CVE Alert: CVE-2025-28923
Vulnerability Summary: CVE-2025-28923 Cross-Site Request Forgery (CSRF) vulnerability in philippe No Disposable Email allows Stored XSS. This issue affects No...
CVE Alert: CVE-2025-28940
Vulnerability Summary: CVE-2025-28940 Cross-Site Request Forgery (CSRF) vulnerability in arkapravamajumder Back To Top allows Cross Site Request Forgery. This issue...
CVE Alert: CVE-2025-28936
Vulnerability Summary: CVE-2025-28936 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sakurapixel Lunar allows Stored XSS....
CVE Alert: CVE-2025-28933
Vulnerability Summary: CVE-2025-28933 Cross-Site Request Forgery (CSRF) vulnerability in maxfoundry MaxA/B allows Stored XSS. This issue affects MaxA/B: from n/a...
CVE Alert: CVE-2025-28932
Vulnerability Summary: CVE-2025-28932 Cross-Site Request Forgery (CSRF) vulnerability in BCS Website Solutions Insert Code allows Stored XSS. This issue affects...
CVE Alert: CVE-2025-2015
Vulnerability Summary: CVE-2025-2015 Ashlar-Vellum Cobalt VS File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to...
CVE Alert: CVE-2025-2016
Vulnerability Summary: CVE-2025-2016 Ashlar-Vellum Cobalt VC6 File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to...
CVE Alert: CVE-2025-28931
Vulnerability Summary: CVE-2025-28931 Cross-Site Request Forgery (CSRF) vulnerability in DevriX Hashtags allows Stored XSS. This issue affects Hashtags: from n/a...
CISA: CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware
CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and...
[QILIN] – Ransomware Victim: Yushin America, Inc
Ransomware Group: QILIN VICTIM NAME: Yushin America, Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...
[BABUK2] – Ransomware Victim: marinabaysands[.]com –Â Singapore Hotel (Internal Server)
Ransomware Group: BABUK2 VICTIM NAME: marinabaysandscom -Â Singapore Hotel (Internal Server) NOTE: No files or stolen information are by RedPacket...
[CACTUS] – Ransomware Victim: baillie[.]com
Ransomware Group: CACTUS VICTIM NAME: bailliecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CACTUS] – Ransomware Victim: thermoid[.]com
Ransomware Group: CACTUS VICTIM NAME: thermoidcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CACTUS] – Ransomware Victim: tempel[.]com
Ransomware Group: CACTUS VICTIM NAME: tempelcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: SMG Bahamas
Ransomware Group: AKIRA VICTIM NAME: SMG Bahamas NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[AKIRA] – Ransomware Victim: PACOMARTINEZ
Ransomware Group: AKIRA VICTIM NAME: PACOMARTINEZ NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: Indastrial Acceptance Corporation
Ransomware Group: AKIRA VICTIM NAME: Indastrial Acceptance Corporation NOTE: No files or stolen information are by RedPacket Security. Any legal...
[BABUK2] – Ransomware Victim: hitekgroup[.]in india Finance
Ransomware Group: BABUK2 VICTIM NAME: hitekgroupin india Finance NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FUNKSEC] – Ransomware Victim: extremeperformance[.]com
Ransomware Group: FUNKSEC VICTIM NAME: extremeperformancecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[Palo Alto Networks Security Advisories] CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
Palo Alto Networks Security Advisories /CVE-2025-0117CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) VulnerabilityUrgencyMODERATE047910Severity4.3 ·MEDIUMExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue DensityDIFFUSEAttack VectorLOCALAttack ComplexityLOWAttack RequirementsNONEAutomatableNOUser...
[Palo Alto Networks Security Advisories] CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
Palo Alto Networks Security Advisories /CVE-2025-0117CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) VulnerabilityUrgencyMODERATE047910Severity4.3 ·MEDIUMExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue DensityDIFFUSEAttack VectorLOCALAttack ComplexityLOWAttack RequirementsNONEAutomatableNOUser...
[Palo Alto Networks Security Advisories] CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
Palo Alto Networks Security Advisories /CVE-2025-0117CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) VulnerabilityUrgencyMODERATE047910Severity4.3 ·MEDIUMExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue DensityDIFFUSEAttack VectorLOCALAttack ComplexityLOWAttack RequirementsNONEAutomatableNOUser...
