Year: 2025

CVE Alert: CVE-2024-13678

February 27, 2025

Vulnerability Summary: CVE-2024-13678 The R3W InstaFeed WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-12434

February 27, 2025

Vulnerability Summary: CVE-2024-12434 The SureMembers plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and...

CVE Alert: CVE-2024-13669

February 27, 2025

Vulnerability Summary: CVE-2024-13669 The CalendApp WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-12737

February 27, 2025

Vulnerability Summary: CVE-2024-12737 The WP BASE Booking of Appointments, Services and Events WordPress plugin before 5.0.0 does not sanitise and...

CVE Alert: CVE-2024-13634

February 27, 2025

Vulnerability Summary: CVE-2024-13634 The Post Sync WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it...

[RANSOMHUB] – Ransomware Victim: www[.]nasonptc[.]com

February 27, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: wwwnasonptccom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RUNSOMEWARES] – Ransomware Victim: Gilbert

February 27, 2025

Ransomware Group: RUNSOMEWARES VICTIM NAME: Gilbert NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RUNSOMEWARES] – Ransomware Victim: F&V Capital Management, LLC (FVCM)

February 27, 2025

Ransomware Group: RUNSOMEWARES VICTIM NAME: F&V Capital Management, LLC (FVCM) NOTE: No files or stolen information are by RedPacket Security....

[RUNSOMEWARES] – Ransomware Victim: Donna G[.] Rogers, CPA, P[.]A[.]

February 27, 2025

Ransomware Group: RUNSOMEWARES VICTIM NAME: Donna G Rogers, CPA, PA NOTE: No files or stolen information are by RedPacket Security....

[RANSOMHUB] – Ransomware Victim: teamwass[.]com

February 27, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: teamwasscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Mercury Paper Inc

February 27, 2025

Ransomware Group: AKIRA VICTIM NAME: Mercury Paper Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...

[RUNSOMEWARES] – Ransomware Victim: Thai Metal Aluminium Co[.], Ltd

February 27, 2025

Ransomware Group: RUNSOMEWARES VICTIM NAME: Thai Metal Aluminium Co, Ltd NOTE: No files or stolen information are by RedPacket Security....

CVE Alert: CVE-2024-13632

February 27, 2025

Vulnerability Summary: CVE-2024-13632 The WP Extra Fields WordPress plugin through 1.0.1 does not sanitise and escape a parameter before outputting...

CVE Alert: CVE-2024-13629

February 27, 2025

Vulnerability Summary: CVE-2024-13629 The pushBIZ WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-13630

February 27, 2025

Vulnerability Summary: CVE-2024-13630 The NewsTicker WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-13631

February 27, 2025

Vulnerability Summary: CVE-2024-13631 The Om Stripe WordPress plugin through 02.00.00 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-13633

February 27, 2025

Vulnerability Summary: CVE-2024-13633 The Simple catalogue WordPress plugin through 1.0.2 does not sanitise and escape a parameter before outputting it...

CVE Alert: CVE-2024-13624

February 27, 2025

Vulnerability Summary: CVE-2024-13624 The WPMovieLibrary WordPress plugin through 2.1.4.8 does not sanitise and escape a parameter before outputting it back...

CVE Alert: CVE-2024-13628

February 27, 2025

Vulnerability Summary: CVE-2024-13628 The WP Pricing Table WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting...

CVE Alert: CVE-2024-39441

February 27, 2025

Vulnerability Summary: CVE-2024-39441 In wifi display, there is a possible missing permission check. This could lead to local escalation of...

CVE Alert: CVE-2024-13803

February 27, 2025

Vulnerability Summary: CVE-2024-13803 The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to...

CVE Alert: CVE-2024-47051

February 27, 2025

Vulnerability Summary: CVE-2024-47051 This advisory addresses two critical security vulnerabilities present in Mautic versions before 5.2.3. These vulnerabilities could be...

[AKIRA] – Ransomware Victim: Sterling BMW

February 27, 2025

Ransomware Group: AKIRA VICTIM NAME: Sterling BMW NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Autohaus Kießling

February 27, 2025

Ransomware Group: AKIRA VICTIM NAME: Autohaus Kießling NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

Year: 2025

CVE Alert: CVE-2024-13678

CVE Alert: CVE-2024-12434

CVE Alert: CVE-2024-13669

CVE Alert: CVE-2024-12737

CVE Alert: CVE-2024-13634

[RANSOMHUB] – Ransomware Victim: www[.]nasonptc[.]com

[RUNSOMEWARES] – Ransomware Victim: Gilbert

[RUNSOMEWARES] – Ransomware Victim: F&V Capital Management, LLC (FVCM)

[RUNSOMEWARES] – Ransomware Victim: Donna G[.] Rogers, CPA, P[.]A[.]

[RANSOMHUB] – Ransomware Victim: teamwass[.]com

[AKIRA] – Ransomware Victim: Mercury Paper Inc

[RUNSOMEWARES] – Ransomware Victim: Thai Metal Aluminium Co[.], Ltd

CVE Alert: CVE-2024-13632

CVE Alert: CVE-2024-13629

CVE Alert: CVE-2024-13630

CVE Alert: CVE-2024-13631

CVE Alert: CVE-2024-13633

CVE Alert: CVE-2024-13624

CVE Alert: CVE-2024-13628

CVE Alert: CVE-2024-39441

CVE Alert: CVE-2024-13803

CVE Alert: CVE-2024-47051

[AKIRA] – Ransomware Victim: Sterling BMW

[AKIRA] – Ransomware Victim: Autohaus Kießling

CVE Alert: CVE-2025-47658

CVE Alert: CVE-2025-48271

CVE Alert: CVE-2025-47660

CVE Alert: CVE-2025-47663

CVE Alert: CVE-2025-48245

You may have missed