CVE Alert: CVE-2025-3635
Vulnerability Summary: CVE-2025-3635 A security vulnerability was discovered in Moodle that allows anyone to duplicate existing tours without needing to...
CVE Alert: CVE-2025-3638
Vulnerability Summary: CVE-2025-3638 A flaw was found in Moodle. The analysis request action in the Brickfield tool did not include...
CVE Alert: CVE-2025-3637
Vulnerability Summary: CVE-2025-3637 A security vulnerability was found in Moodle where confidential information that prevents cross-site request forgery (CSRF) attacks...
CVE Alert: CVE-2025-3628
Vulnerability Summary: CVE-2025-3628 A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing...
Frogy2.0 – An Automated External Reconnaissance And Attack Surface Management (ASM) Toolkit
Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit designed to map out an organization's entire...
Cobalt Strike Beacon Detected – 104[.]168[.]96[.]138:16001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 113[.]45[.]225[.]150:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CovenantC2 Detected – 80[.]98[.]145[.]41:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2025-3647
Vulnerability Summary: CVE-2025-3647 A flaw was discovered in Moodle. Additional checks were required to ensure that users can only access...
CVE Alert: CVE-2025-3643
Vulnerability Summary: CVE-2025-3643 A flaw was found in Moodle. The return URL in the policy tool required additional sanitizing to...
CVE Alert: CVE-2025-3645
Vulnerability Summary: CVE-2025-3645 A flaw was found in Moodle. Insufficient capability checks in a messaging web service allowed users to...
CVE Alert: CVE-2025-3644
Vulnerability Summary: CVE-2025-3644 A flaw was found in Moodle. Additional checks were required to prevent users from deleting course sections...
CVE Alert: CVE-2025-3642
Vulnerability Summary: CVE-2025-3642 A flaw was found in Moodle. A remote code execution risk was identified in the Moodle LMS...
CVE Alert: CVE-2025-46618
Vulnerability Summary: CVE-2025-46618 In JetBrains TeamCity before 2025.03.1 stored XSS was possible on Data Directory tab Affected Endpoints: No affected...
CVE Alert: CVE-2025-43016
Vulnerability Summary: CVE-2025-43016 In JetBrains Rider before 2025.1.2 custom archive unpacker allowed arbitrary file overwrite during remote debug session Affected...
CVE Alert: CVE-2025-46433
Vulnerability Summary: CVE-2025-46433 In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was possible Affected Endpoints: No affected...
CVE Alert: CVE-2025-46432
Vulnerability Summary: CVE-2025-46432 In JetBrains TeamCity before 2025.03.1 base64-encoded credentials could be exposed in build logs Affected Endpoints: No affected...
CVE Alert: CVE-2025-43862
Vulnerability Summary: CVE-2025-43862 Dify is an open-source LLM app development platform. Prior to version 0.6.12, a normal user is able...
CVE Alert: CVE-2025-2070
Vulnerability Summary: CVE-2025-2070 An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads...
CVE Alert: CVE-2025-2068
Vulnerability Summary: CVE-2025-2068 An open redirect vulnerability was reported in the FileZ client that could allow information disclosure if a...
CVE Alert: CVE-2025-25775
Vulnerability Summary: CVE-2025-25775 Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter in /BusTicket-CI/tiket/cekorder....
CVE Alert: CVE-2025-2069
Vulnerability Summary: CVE-2025-2069 A cross-site scripting vulnerability was reported in the FileZ client that could allow execution of code if...
CVE Alert: CVE-2025-3928
Vulnerability Summary: CVE-2025-3928 Commvault Web Server has an unspecified vulnerability that can be exploited by a remote, authenticated attacker. According...
CVE Alert: CVE-2025-32984
Vulnerability Summary: CVE-2025-32984 NETSCOUT nGeniusONE before 6.4.0 b2350 allows Stored Cross-Site Scripting (XSS) via a certain POST parameter. Affected Endpoints:...
