CVE Alert: CVE-2025-54452
Vulnerability Summary: CVE-2025-54452 Improper Authentication vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server:...
Month: July 2025
CVE Alert: CVE-2025-54441
Vulnerability Summary: CVE-2025-54441 Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This...
[INCRANSOM] – Ransomware Victim: seasonsfour[.]com
Ransomware Group: INCRANSOM VICTIM NAME: seasonsfourcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-54448
Vulnerability Summary: CVE-2025-54448 Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This...
CVE Alert: CVE-2025-6174
Vulnerability Summary: CVE-2025-6174 The Qwizcards | online quizzes and flashcards WordPress plugin through 3.9.4 does not sanitise and escape the...
CVE Alert: CVE-2025-54449
Vulnerability Summary: CVE-2025-54449 Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This...
CVE Alert: CVE-2025-54455
Vulnerability Summary: CVE-2025-54455 Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO...
CVE Alert: CVE-2025-54450
Vulnerability Summary: CVE-2025-54450 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9...
BugCrowd Bug Bounty Disclosure: P5 – Account Takeover via Password Reset Token and Insecure Email Change Handling – David007
Account Takeover via Password Reset Token and Insecure Email Change Handling Account Takeover via Password Reset Token and Insecure Email...
CVE Alert: CVE-2025-41687
Vulnerability Summary: CVE-2025-41687 An unauthenticated remote attacker may use a stack based buffer overflow in the u-link Management API to...
CVE Alert: CVE-2025-41684
Vulnerability Summary: CVE-2025-41684 An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack...
CVE Alert: CVE-2025-41683
Vulnerability Summary: CVE-2025-41683 An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack...
CVE Alert: CVE-2025-31700
Vulnerability Summary: CVE-2025-31700 A vulnerability has been found in Dahua products. Attackers could exploit a buffer overflow vulnerability by sending...
CVE Alert: CVE-2025-31701
Vulnerability Summary: CVE-2025-31701 A vulnerability has been found in Dahua products. Attackers could exploit a buffer overflow vulnerability by sending...
[QILIN] – Ransomware Victim: BALNEARIO DE MONDARIZ
Ransomware Group: QILIN VICTIM NAME: BALNEARIO DE MONDARIZ NOTE: No files or stolen information are by RedPacket Security. Any legal...
[QILIN] – Ransomware Victim: foiegrasespinet
Ransomware Group: QILIN VICTIM NAME: foiegrasespinet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-40682
Vulnerability Summary: CVE-2024-40682 IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local...
CVE Alert: CVE-2025-27930
Vulnerability Summary: CVE-2025-27930 Zohocorp ManageEngine Applications Manager versions 176600 and prior are vulnerable to stored cross-site scripting in the File/Directory...
CVE Alert: CVE-2024-40686
Vulnerability Summary: CVE-2024-40686 IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 is vulnerable to HTTP...
CVE Alert: CVE-2025-53882
Vulnerability Summary: CVE-2025-53882 A Reliance on Untrusted Inputs in a Security Decision vulnerability in the logrotate configuration for openSUSEs mailman3...
CVE Alert: CVE-2024-41750
Vulnerability Summary: CVE-2024-41750 IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local,...
HackerOne Bug Bounty Disclosure: use-after-free-or-assert-triggered-with-failed-allocations-in-openssl-catenacyber
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:catenacyberLink to Submitters Profile:https://hackerone.com/catenacyber Report Title:Use after free (or assert triggered) with...
HackerOne Bug Bounty Disclosure: security-check-up-ejejohn
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:ejejohnLink to Submitters Profile:https://hackerone.com/ejejohn Report Title:Security check upReport Link:https://hackerone.com/reports/3269761Date Submitted:24 July 2025...
[QILIN] – Ransomware Victim: moonsafari
Ransomware Group: QILIN VICTIM NAME: moonsafari NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
