CVE Alert: CVE-2025-3454
Vulnerability Summary: CVE-2025-3454 This vulnerability in Grafana's datasource proxy API allows authorization checks to be bypassed by adding an extra...
Month: June 2025
[SAFEPAY] – Ransomware Victim: Myer Auto
Ransomware Group: SAFEPAY VICTIM NAME: Myer Auto NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[QILIN] – Ransomware Victim: FLOE International
Ransomware Group: QILIN VICTIM NAME: FLOE International NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[SAFEPAY] – Ransomware Victim: digitalwarroom[.]com
Ransomware Group: SAFEPAY VICTIM NAME: digitalwarroomcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[SAFEPAY] – Ransomware Victim: ochsinc[.]org[.]com
Ransomware Group: SAFEPAY VICTIM NAME: ochsincorgcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-48955
Vulnerability Summary: CVE-2025-48955 Para is a multitenant backend server/framework for object persistence and retrieval. A vulnerability that exists in versions...
CVE Alert: CVE-2025-48958
Vulnerability Summary: CVE-2025-48958 Froxlor is open source server administration software. Prior to version 2.2.6, an HTML Injection vulnerability in the...
CVE Alert: CVE-2025-5441
Vulnerability Summary: CVE-2025-5441 A vulnerability classified as critical was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001....
CVE Alert: CVE-2025-48957
Vulnerability Summary: CVE-2025-48957 AstrBot is a large language model chatbot and development framework. A path traversal vulnerability present in versions...
CVE Alert: CVE-2025-5444
Vulnerability Summary: CVE-2025-5444 A vulnerability has been found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001 and classified...
[PLAY] – Ransomware Victim: Sorter Construction
Ransomware Group: PLAY VICTIM NAME: Sorter Construction NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[PLAY] – Ransomware Victim: Rochon
Ransomware Group: PLAY VICTIM NAME: Rochon NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: yahtec
Ransomware Group: LYNX VICTIM NAME: yahtec NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-5443
Vulnerability Summary: CVE-2025-5443 A vulnerability, which was classified as critical, was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and...
CVE Alert: CVE-2025-5446
Vulnerability Summary: CVE-2025-5446 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been...
CVE Alert: CVE-2025-26396
Vulnerability Summary: CVE-2025-26396 The SolarWinds Dameware Mini Remote Control was determined to be affected by Incorrect Permissions Local Privilege Escalation...
CVE Alert: CVE-2025-5445
Vulnerability Summary: CVE-2025-5445 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001 and classified as...
CVE Alert: CVE-2024-57783
Vulnerability Summary: CVE-2024-57783 The desktop application in Dot through 0.9.3 allows XSS and resultant command execution because user input and...
CVE Alert: CVE-2025-37093
Vulnerability Summary: CVE-2025-37093 An authentication bypass vulnerability exists in HPE StoreOnce Software. Affected Endpoints: No affected endpoints listed. Published Date:...
CVE Alert: CVE-2025-37091
Vulnerability Summary: CVE-2025-37091 A command injection remote code execution vulnerability exists in HPE StoreOnce Software. Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2025-37094
Vulnerability Summary: CVE-2025-37094 A directory traversal arbitrary file deletion vulnerability exists in HPE StoreOnce Software. Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2025-5447
Vulnerability Summary: CVE-2025-5447 A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been...
CVE Alert: CVE-2024-54028
Vulnerability Summary: CVE-2024-54028 An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially...
HackerOne Bug Bounty Disclosure: server-side-request-forgery-ssrf-via-game-export-api-oblivionsage
Company Name: Lichess Company HackerOne URL: https://hackerone.com/lichess Submitted By:oblivionsageLink to Submitters Profile:https://hackerone.com/oblivionsage Report Title:Server-Side Request Forgery (SSRF) via Game Export...
