CVE Alert: CVE-2025-3669
Vulnerability Summary: CVE-2025-3669 The Supreme Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
CVE Alert: CVE-2025-4608
Vulnerability Summary: CVE-2025-4608 The Structured Content plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sc_fs_local_business shortcode...
CVE Alert: CVE-2025-6588
Vulnerability Summary: CVE-2025-6588 The FunnelCockpit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘error’ parameter in all...
CVE Alert: CVE-2025-6382
Vulnerability Summary: CVE-2025-6382 The Taeggie Feed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's taeggie-feed shortcode...
CVE Alert: CVE-2025-7835
Vulnerability Summary: CVE-2025-7835 The iThoughts Advanced Code Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
CVE Alert: CVE-2025-6441
Vulnerability Summary: CVE-2025-6441 The Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition plugin for WordPress is vulnerable...
CVE Alert: CVE-2025-6387
Vulnerability Summary: CVE-2025-6387 The WP Get The Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’...
CVE Alert: CVE-2025-6385
Vulnerability Summary: CVE-2025-6385 The WP Applink plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ parameter in...
CVE Alert: CVE-2025-7640
Vulnerability Summary: CVE-2025-7640 The hiWeb Export Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up...
CVE Alert: CVE-2025-7690
Vulnerability Summary: CVE-2025-7690 The Affiliate Plus plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,...
CVE Alert: CVE-2025-7695
Vulnerability Summary: CVE-2025-7695 The Dataverse Integration plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization checks within...
CVE Alert: CVE-2025-7780
Vulnerability Summary: CVE-2025-7780 The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to,...
CVE Alert: CVE-2025-7822
Vulnerability Summary: CVE-2025-7822 The WP Wallcreeper plugin for WordPress is vulnerable to unauthorized modification of data due to a missing...
[AKIRA] – Ransomware Victim: Dunlap Codding
Ransomware Group: AKIRA VICTIM NAME: Dunlap Codding NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-7959
Vulnerability Summary: CVE-2025-7959 The Station Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width' and 'height’...
CVE Alert: CVE-2025-8071
Vulnerability Summary: CVE-2025-8071 Mine CloudVod plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘audio’ parameter in all...
CVE Alert: CVE-2025-7966
Vulnerability Summary: CVE-2025-7966 The Get Youtube Subs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘channel', 'layout',...
CVE Alert: CVE-2025-5243
Vulnerability Summary: CVE-2025-5243 Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Special Elements used in an OS Command...
CVE Alert: CVE-2025-4822
Vulnerability Summary: CVE-2025-4822 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bayraktar Solar Energies...
[QILIN] – Ransomware Victim: [Redacted]
Ransomware Group: QILIN VICTIM NAME: NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to...
[AKIRA] – Ransomware Victim: Helical Auto Technology (India)
Ransomware Group: AKIRA VICTIM NAME: Helical Auto Technology (India) NOTE: No files or stolen information are by RedPacket Security. Any...
[QILIN] – Ransomware Victim: Astro Industries Inc[.]
Ransomware Group: QILIN VICTIM NAME: Astro Industries Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...
[GLOBAL] – Ransomware Victim: lafavoritaservice[.]it
Ransomware Group: GLOBAL VICTIM NAME: lafavoritaserviceit NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[EVEREST] – Ransomware Victim: Best Price Financial Services
Ransomware Group: EVEREST VICTIM NAME: Best Price Financial Services NOTE: No files or stolen information are by RedPacket Security. Any...
