CVE Alert: CVE-2025-6904
Vulnerability Summary: CVE-2025-6904 A vulnerability was found in code-projects Car Rental System 1.0. It has been rated as critical. Affected...
Month: July 2025
CVE Alert: CVE-2024-53621
Vulnerability Summary: CVE-2024-53621 A buffer overflow in the formSetCfm() function of Tenda AC1206 1200M 11ac US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 allows attackers to cause...
CVE Alert: CVE-2023-47310
Vulnerability Summary: CVE-2023-47310 A misconfiguration in the default settings of MikroTik RouterOS 7 and fixed in v7.14 allows incoming IPv6...
CVE Alert: CVE-2025-6908
Vulnerability Summary: CVE-2025-6908 A vulnerability, which was classified as critical, was found in PHPGurukul Old Age Home Management System 1.0....
CVE Alert: CVE-2025-6910
Vulnerability Summary: CVE-2025-6910 A vulnerability was found in PHPGurukul Student Record System 3.2. It has been classified as critical. This...
CVE Alert: CVE-2025-6909
Vulnerability Summary: CVE-2025-6909 A vulnerability has been found in PHPGurukul Old Age Home Management System 1.0 and classified as critical....
[QILIN] – Ransomware Victim: villagecoin[.]com
Ransomware Group: QILIN VICTIM NAME: villagecoincom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: parsons-peebles[.]com
Ransomware Group: QILIN VICTIM NAME: parsons-peeblescom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: capmark[.]org
Ransomware Group: QILIN VICTIM NAME: capmarkorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
HackerOne Bug Bounty Disclosure: curl-easy-header-runs-at-o-n-or-worse-and-can-be-abused-to-use-minute-s-of-cpu-time-wolfsage
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:wolfsageLink to Submitters Profile:https://hackerone.com/wolfsage Report Title:curl_easy_header runs at O(N) or worse and...
HackerOne Bug Bounty Disclosure: curl-oj-allows-creating-custom-curlrc-file-which-allows-exfiltrating-private-data-among-other-things-wolfsage
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:wolfsageLink to Submitters Profile:https://hackerone.com/wolfsage Report Title:curl -OJ allows creating custom curlrc file...
HackerOne Bug Bounty Disclosure: heap-buffer-overflow-vulnerability-in-conncache-c-incorrect-use-of-pointer-arrays-resulting-in-out-of-bounds-memory-writes-freak-coding
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:freak_codingLink to Submitters Profile:https://hackerone.com/freak_coding Report Title:Heap buffer overflow vulnerability in conncachec: incorrect...
HackerOne Bug Bounty Disclosure: http-proxy-bypass-via-curlopt-customrequest-verb-tunneling-alphox
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:alphoxLink to Submitters Profile:https://hackerone.com/alphox Report Title:HTTP Proxy Bypass via `CURLOPT_CUSTOMREQUEST` Verb TunnelingReport...
HackerOne Bug Bounty Disclosure: arbitrary-file-read-via-file-path-traversal-with-path-as-is-demsese
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:demseseLink to Submitters Profile:https://hackerone.com/demsese Report Title:arbitrary file read via `file://` path traversal...
HackerOne Bug Bounty Disclosure: speculative-execution-side-channel-in-curl-evilginx
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:evilginx1Link to Submitters Profile:https://hackerone.com/evilginx1 Report Title:Speculative Execution Side-Channel in `curl` Report Link:https://hackerone.com/reports/3124490Date...
HackerOne Bug Bounty Disclosure: memory-leak-of-ftp-with-proxy-reuse-catenacyber
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:catenacyberLink to Submitters Profile:https://hackerone.com/catenacyber Report Title:Memory leak of ftp (with proxy reuse)Report...
[QILIN] – Ransomware Victim: Alert Medical Alarms
Ransomware Group: QILIN VICTIM NAME: Alert Medical Alarms NOTE: No files or stolen information are by RedPacket Security. Any legal...
[QILIN] – Ransomware Victim: LP Charpente
Ransomware Group: QILIN VICTIM NAME: LP Charpente NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[AKIRA] – Ransomware Victim: Watermark Marine Systems
Ransomware Group: AKIRA VICTIM NAME: Watermark Marine Systems NOTE: No files or stolen information are by RedPacket Security. Any legal...
[KAWA4096] – Ransomware Victim: tokiomarine-nichido[.]co[.]jp
Ransomware Group: KAWA4096 VICTIM NAME: tokiomarine-nichidocojp NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[KAWA4096] – Ransomware Victim: www[.]ogr-jp[.]com
Ransomware Group: KAWA4096 VICTIM NAME: wwwogr-jpcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: exhibits-intl[.]com
Ransomware Group: QILIN VICTIM NAME: exhibits-intlcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-12915
Vulnerability Summary: CVE-2024-12915 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Devinim Software Library...
CVE Alert: CVE-2025-2895
Vulnerability Summary: CVE-2025-2895 IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, 2.3.4.1, and 2.3.4.1 iFix1 is vulnerable...
