Month: May 2025

CVE Alert: CVE-2025-48927

May 29, 2025

Vulnerability Summary: CVE-2025-48927 The TeleMessage service through 2025-05-05 configures Spring Boot Actuator with an exposed heap dump endpoint at a...

CVE Alert: CVE-2025-48926

May 29, 2025

Vulnerability Summary: CVE-2025-48926 The admin panel in the TeleMessage service through 2025-05-05 allows attackers to discover usernames, e-mail addresses, passwords,...

CVE Alert: CVE-2025-48930

May 29, 2025

Vulnerability Summary: CVE-2025-48930 The TeleMessage service through 2025-05-05 stores certain cleartext information in memory, even though memory content may be...

CVE Alert: CVE-2025-48928

May 29, 2025

Vulnerability Summary: CVE-2025-48928 The TeleMessage service through 2025-05-05 is based on a JSP application in which the heap content is...

CVE Alert: CVE-2025-5257

May 29, 2025

Vulnerability Summary: CVE-2025-5257 SummaryThis advisory addresses a security vulnerability in Mautic where unpublished page previews could be accessed by unauthenticated...

CVE Alert: CVE-2025-48929

May 29, 2025

Vulnerability Summary: CVE-2025-48929 The TeleMessage service through 2025-05-05 implements authentication through a long-lived credential (e.g., not a token with a...

CVE Alert: CVE-2025-48931

May 29, 2025

Vulnerability Summary: CVE-2025-48931 The TeleMessage service through 2025-05-05 relies on MD5 for password hashing, which opens up various attack possibilities...

CVE Alert: CVE-2024-47057

May 29, 2025

Vulnerability Summary: CVE-2024-47057 SummaryThis advisory addresses a security vulnerability in Mautic related to the "Forget your password" functionality. This vulnerability...

CVE Alert: CVE-2025-31501

May 29, 2025

Vulnerability Summary: CVE-2025-31501 Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink....

CVE Alert: CVE-2025-1461

May 29, 2025

Vulnerability Summary: CVE-2025-1461 Improper neutralization of the value of the 'eventMoreText' property of the 'VCalendar' component in Vuetify allows unsanitized...

CVE Alert: CVE-2024-47055

May 29, 2025

Vulnerability Summary: CVE-2024-47055 SummaryThis advisory addresses a security vulnerability in Mautic related to the segment cloning functionality. This vulnerability allows...

CVE Alert: CVE-2025-31500

May 29, 2025

Vulnerability Summary: CVE-2025-31500 Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name....

CVE Alert: CVE-2025-30087

May 29, 2025

Vulnerability Summary: CVE-2025-30087 Best Practical RT (Request Tracker) 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of...

CVE Alert: CVE-2025-48749

May 29, 2025

Vulnerability Summary: CVE-2025-48749 Netwrix Directory Manager (formerly Imanami GroupID) v11.0.0.0 and before & after v.11.1.25134.03 inserts Sensitive Information into Sent...

CVE Alert: CVE-2025-5256

May 29, 2025

Vulnerability Summary: CVE-2025-5256 SummaryThis advisory addresses an Open Redirection vulnerability in Mautic's user unlocking endpoint. This vulnerability could be exploited...

CVE Alert: CVE-2025-48747

May 29, 2025

Vulnerability Summary: CVE-2025-48747 Netwrix Directory Manager (formerly Imanami GroupID) before and including v.11.0.0.0 and after v.11.1.25134.03 has Incorrect Permission Assignment...

CVE Alert: CVE-2025-32803

May 29, 2025

Vulnerability Summary: CVE-2025-32803 In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions...

7c66e98dcec96ae9178a66514d51e704b4d6d43ee2dbaefb8d6cc4901420be85

Three Ways To Run Windows Apps On A Linux Box

May 29, 2025

hands on If you're thinking about switching to Linux but there are a few Windows apps you just can't do...

[NOVA] – Ransomware Victim: SunMoon university

May 29, 2025

Ransomware Group: NOVA VICTIM NAME: SunMoon university NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[PLAY] – Ransomware Victim: KDV Label

May 29, 2025

Ransomware Group: PLAY VICTIM NAME: KDV Label NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[SAFEPAY] – Ransomware Victim: bridgecast[.]ca

May 29, 2025

Ransomware Group: SAFEPAY VICTIM NAME: bridgecastca NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[SAFEPAY] – Ransomware Victim: codylawfirm[.]com

May 29, 2025

Ransomware Group: SAFEPAY VICTIM NAME: codylawfirmcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[SAFEPAY] – Ransomware Victim: spring-green[.]com/petbutler[.]com

May 29, 2025

Ransomware Group: SAFEPAY VICTIM NAME: spring-greencom/petbutlercom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[SAFEPAY] – Ransomware Victim: paynecountyok[.]gov

May 29, 2025

Ransomware Group: SAFEPAY VICTIM NAME: paynecountyokgov NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Month: May 2025

CVE Alert: CVE-2025-48927

CVE Alert: CVE-2025-48926

CVE Alert: CVE-2025-48930

CVE Alert: CVE-2025-48928

CVE Alert: CVE-2025-5257

CVE Alert: CVE-2025-48929

CVE Alert: CVE-2025-48931

CVE Alert: CVE-2024-47057

CVE Alert: CVE-2025-31501

CVE Alert: CVE-2025-1461

CVE Alert: CVE-2024-47055

CVE Alert: CVE-2025-31500

CVE Alert: CVE-2025-30087

CVE Alert: CVE-2025-48749

CVE Alert: CVE-2025-5256

CVE Alert: CVE-2025-48747

CVE Alert: CVE-2025-32803

Three Ways To Run Windows Apps On A Linux Box

[NOVA] – Ransomware Victim: SunMoon university

[PLAY] – Ransomware Victim: KDV Label

[SAFEPAY] – Ransomware Victim: bridgecast[.]ca

[SAFEPAY] – Ransomware Victim: codylawfirm[.]com

[SAFEPAY] – Ransomware Victim: spring-green[.]com/petbutler[.]com

[SAFEPAY] – Ransomware Victim: paynecountyok[.]gov

Crims Stole 40,000 People’s Data From Our Network, Admits Publisher Leeenterprises

CVE Alert: CVE-2025-5611

CVE Alert: CVE-2025-5690

CVE Alert: CVE-2025-5610

CVE Alert: CVE-2025-5615

You may have missed