CVE Alert: CVE-2025-39355
Vulnerability Summary: CVE-2025-39355 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in roninwp FAT Services...
Month: May 2025
CVE Alert: CVE-2025-39392
Vulnerability Summary: CVE-2025-39392 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mojoomla WPAMS allows Reflected XSS.This...
CVE Alert: CVE-2025-39372
Vulnerability Summary: CVE-2025-39372 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in elbisnero WordPress Events Calendar Registration...
CVE Alert: CVE-2025-39389
Vulnerability Summary: CVE-2025-39389 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Solid Plugins AnalyticsWP...
CVE Alert: CVE-2025-39386
Vulnerability Summary: CVE-2025-39386 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla Hospital Management...
CVE Alert: CVE-2025-39366
Vulnerability Summary: CVE-2025-39366 Incorrect Privilege Assignment vulnerability in Rocket Apps wProject.This issue affects wProject: from n/a before 5.8.0. Affected Endpoints:...
CVE Alert: CVE-2025-39380
Vulnerability Summary: CVE-2025-39380 Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla Hospital Management System allows Upload a Web...
Lastos Slaps Neon Paint On Linux Mint And Dares You To Run Photoshop
LastOS is a tricked-out version of Linux Mint 22.1 with the Cinnamon desktop and some additional tools to make life...
CVE Alert: CVE-2025-39395
Vulnerability Summary: CVE-2025-39395 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla WPAMS allows...
CVE Alert: CVE-2025-46441
Vulnerability Summary: CVE-2025-46441 Path Traversal: '.../...//' vulnerability in ctltwp Section Widget allows Path Traversal.This issue affects Section Widget: from n/a...
CVE Alert: CVE-2025-47935
Vulnerability Summary: CVE-2025-47935 Multer is a node.js middleware for handling `multipart/form-data`. Versions prior to 2.0.0 are vulnerable to a resource...
CVE Alert: CVE-2025-39402
Vulnerability Summary: CVE-2025-39402 Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to...
CVE Alert: CVE-2025-39401
Vulnerability Summary: CVE-2025-39401 Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to...
CVE Alert: CVE-2025-47944
Vulnerability Summary: CVE-2025-47944 Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability that is present starting in version 1.4.4-lts.1...
CVE Alert: CVE-2025-39393
Vulnerability Summary: CVE-2025-39393 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mojoomla Hospital Management System allows...
CVE Alert: CVE-2025-48340
Vulnerability Summary: CVE-2025-48340 Cross-Site Request Forgery (CSRF) vulnerability in Danny Vink User Profile Meta Manager allows Privilege Escalation.This issue affects...
CVE Alert: CVE-2025-47946
Vulnerability Summary: CVE-2025-47946 Symfony UX is an initiative and set of libraries to integrate JavaScript tools into applications. Prior to...
CVE Alert: CVE-2025-3223
Vulnerability Summary: CVE-2025-3223 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in GE Vernova WorkstationST on...
[KILLSEC] – Ransomware Victim: Medswana
Ransomware Group: KILLSEC VICTIM NAME: Medswana NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[IMNCREW] – Ransomware Victim: Stiga[.]com
Ransomware Group: IMNCREW VICTIM NAME: Stigacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[WORLDLEAKS] – Ransomware Victim: Indigo Group S[.]A[.]
Ransomware Group: WORLDLEAKS VICTIM NAME: Indigo Group SA NOTE: No files or stolen information are by RedPacket Security. Any legal...
Cobalt Strike Beacon Detected – 156[.]238[.]224[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 111[.]229[.]0[.]18:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-4864
Vulnerability Summary: CVE-2025-4864 A vulnerability has been found in itsourcecode Restaurant Management System 1.0 and classified as critical. This vulnerability...
