Company Name: GitLab Company HackerOne URL: https://hackerone.com/gitlab Submitted By:mobligLink to Submitters Profile:https://hackerone.com/moblig Report Title:IDOR Exposes All Machine Learning ModelsReport Link:https://hackerone.com/reports/2528293Date...
Company Name: Ruby on Rails Company HackerOne URL: https://hackerone.com/rails Submitted By:ooooooo_qLink to Submitters Profile:https://hackerone.com/ooooooo_q Report Title:XSS when using `translate` in...
Company Name: GitLab Company HackerOne URL: https://hackerone.com/gitlab Submitted By:tefa_Link to Submitters Profile:https://hackerone.com/tefa_ Report Title:Remove obsolete domain from handbook subdomainReport Link:https://hackerone.com/reports/2599840Date...
Company Name: IBM Company HackerOne URL: https://hackerone.com/ibm Submitted By:0xhassanLink to Submitters Profile:https://hackerone.com/0xhassan Report Title:IBM OpenPages vulnerable to exposure of sensitive...
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 1, 2024. These...
Ransomware Group: MADLIBERATOR VICTIM NAME: marthamedeiroscombr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Ransomware Group: AKIRA VICTIM NAME: CSG Consultants NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Ransomware Group: ELDORADO VICTIM NAME: aberdeenwagov NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Vulnerability Summary: CVE-2024-45920 A Stored Cross-Site Scripting (XSS) vulnerability in Solvait 24.4.2 allows remote attackers to inject malicious scripts into...
Vulnerability Summary: CVE-2024-45772 Deserialization of Untrusted Data vulnerability in Apache Lucene Replicator. This issue affects Apache Lucene's replicator module: from...
Vulnerability Summary: CVE-2024-47172 Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An...
Vulnerability Summary: CVE-2024-47641 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloperr Confetti Fall...
Vulnerability Summary: CVE-2024-46313 TP-Link WR941ND V6 has a stack overflow vulnerability in the ssid parameter in /userRpm/popupSiteSurveyRpm.htm. Affected Endpoints: No...
Vulnerability Summary: CVE-2024-47531 Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it...
Vulnerability Summary: CVE-2024-46280 PIX-LINK LV-WR22 RE3002-P1-01_V117.0 is vulnerable to Improper Access Control. The TELNET service is enabled with weak credentials...
Vulnerability Summary: CVE-2024-46293 Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Incorrect Access Control. There is a lack of...
Vulnerability Summary: CVE-2024-47530 Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by...
Vulnerability Summary: CVE-2024-46510 ESAFENET CDG v5 was discovered to contain a SQL injection vulnerability via the id parameter in the...
Ransomware Group: MEOW VICTIM NAME: Corantioquia NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Ransomware Group: QILIN VICTIM NAME: performance-therapies NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Ransomware Group: CACTUS VICTIM NAME: wwwgalabcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
