CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Month: March 2025
CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA Adds Five Known Exploited Vulnerabilities to Catalog CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: FBI Warns of Data Extortion Scam Targeting Corporate Executives
FBI Warns of Data Extortion Scam Targeting Corporate Executives The Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) has...
CISA: CISA Adds Six Known Exploited Vulnerabilities to Catalog
CISA Adds Six Known Exploited Vulnerabilities to Catalog CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Thirteen Industrial Control Systems Advisories
CISA Releases Thirteen Industrial Control Systems Advisories CISA released thirteen Industrial Control Systems (ICS) advisories on March 13, 2025. These...
CISA: CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware
CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on March 11, 2025. These...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
HackerOne Bug Bounty Disclosure: domain-highlighting-on-external-link-warning-is-not-working-on-chrome-microsoft-edge-browsers-on-mobile-sarthakbhingare
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:sarthakbhingare015Link to Submitters Profile:https://hackerone.com/sarthakbhingare015 Report Title:Domain highlighting on External link warning is...
HackerOne Bug Bounty Disclosure: cgi-scripts-wordlist-entry-for-windmail-exe-has-payload-that-sends-arbitrary-file-read-result-to-third-party-floyd
Company Name: PortSwigger Web Security Company HackerOne URL: https://hackerone.com/portswigger Submitted By:floydLink to Submitters Profile:https://hackerone.com/floyd Report Title:cgi scripts wordlist entry for...
HackerOne Bug Bounty Disclosure: stored-cross-site-scripting-in-mercadopago-com-ar-elmago
Company Name: MercadoLibre Company HackerOne URL: https://hackerone.com/mercadolibre Submitted By:elmagoLink to Submitters Profile:https://hackerone.com/elmago Report Title:Stored Cross-Site Scripting in mercadopagocomarReport Link:https://hackerone.com/reports/1955485Date Submitted:13...
CISA: CISA Releases Thirteen Industrial Control Systems Advisories
CISA Releases Thirteen Industrial Control Systems Advisories CISA released thirteen Industrial Control Systems (ICS) advisories on March 13, 2025. These...
CVE Alert: CVE-2025-27788
Vulnerability Summary: CVE-2025-27788 JSON is a JSON implementation for Ruby. Starting in version 2.10.0 and prior to version 2.10.2, a...
CVE Alert: CVE-2025-25709
Vulnerability Summary: CVE-2025-25709 An issue in dtp.ae tNexus Airport View v.2.8 allows a remote attacker to escalate privileges via the...
CVE Alert: CVE-2025-27794
Vulnerability Summary: CVE-2025-27794 Flarum is open-source forum software. A session hijacking vulnerability exists in versions prior to 1.8.10 when an...
CVE Alert: CVE-2025-27915
Vulnerability Summary: CVE-2025-27915 An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0 and 10.1. A stored cross-site scripting...
CVE Alert: CVE-2025-27914
Vulnerability Summary: CVE-2025-27914 An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0 and 10.1. A Reflected Cross-Site Scripting...
CVE Alert: CVE-2025-2240
Vulnerability Summary: CVE-2025-2240 A flaw was found in Smallrye, where smallrye-fault-tolerance is vulnerable to an out-of-memory (OOM) issue. This vulnerability...
CVE Alert: CVE-2025-29891
Vulnerability Summary: CVE-2025-29891 Bypass/Injection vulnerability in Apache Camel. This issue affects Apache Camel: from 4.10.0 before 4.10.2, from 4.8.0 before...
CVE Alert: CVE-2025-22954
Vulnerability Summary: CVE-2025-22954 Koha
CVE Alert: CVE-2024-27763
Vulnerability Summary: CVE-2024-27763 XPixelGroup BasicSR through 1.4.2 might locally allow code execution in contrived situations where "scontrol show hostname" is...
CVE Alert: CVE-2025-1984
Vulnerability Summary: CVE-2025-1984 Xerox Desktop Print Experience application contains a Local Privilege Escalation (LPE) vulnerability, which allows a low-privileged user...
Cobalt Strike Beacon Detected – 112[.]74[.]184[.]37:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 112[.]74[.]184[.]37:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
