CovenantC2 Detected – 209[.]141[.]47[.]199:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2025-51471
Vulnerability Summary: CVE-2025-51471 Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.6.7 allows remote attackers to steal authentication tokens and bypass...
CVE Alert: CVE-2025-51479
Vulnerability Summary: CVE-2025-51479 Authorization bypass in update_user_group in onyx-dot-app Onyx Enterprise Edition 0.27.0 allows remote authenticated attackers to modify arbitrary...
CVE Alert: CVE-2025-31512
Vulnerability Summary: CVE-2025-31512 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval via isAddedByApprover in a...
CVE Alert: CVE-2025-31511
Vulnerability Summary: CVE-2025-31511 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval by changing the user...
CVE Alert: CVE-2025-51459
Vulnerability Summary: CVE-2025-51459 File Upload vulnerability in agent.hub.controller.refresh_plugins in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary code via...
CVE Alert: CVE-2025-51475
Vulnerability Summary: CVE-2025-51475 Arbitrary File Overwrite (AFO) in superagi.controllers.resources.upload in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to overwrite arbitrary files...
CVE Alert: CVE-2025-51462
Vulnerability Summary: CVE-2025-51462 Stored Cross-site Scripting (XSS) vulnerability in api.apps.dialog_app.set_dialog in RAGFlow 0.17.2 allows remote attackers to execute arbitrary JavaScript...
CVE Alert: CVE-2025-51458
Vulnerability Summary: CVE-2025-51458 SQL Injection in editor_sql_run and query_ex in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary SQL...
CVE Alert: CVE-2025-51472
Vulnerability Summary: CVE-2025-51472 Code Injection in AgentTemplate.eval_agent_config in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to execute arbitrary Python code via...
CVE Alert: CVE-2025-31513
Vulnerability Summary: CVE-2025-31513 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can elevate to administrator privileges via the IsAdminApprover...
Microsoft Monthly Security Update (July 2025)
Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesWindows Medium RiskInformation Disclosure Spoofing Elevation of Privilege Remote Code...
Ubuntu Linux Kernel Multiple Vulnerabilities
Multiple vulnerabilities were identified in Ubuntu Linux Kernel. An attacker could exploit some of these vulnerabilities to trigger elevation of privilege,...
The Real Reason Why Trump Is Killing The Mauna Loa Observatory In Hawai’i
Column When you don't like the message, what do you do? You shoot the messenger, of course.That's the strategy being...
Silicon Valley Engineer Admits Theft Of Us Missile Tech Secrets
A Silicon Valley engineer has pleaded guilty to stealing thousands of trade secrets worth hundreds of millions of dollars, including...
CVE Alert: CVE-2025-53538
Vulnerability Summary: CVE-2025-53538 Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation)...
CVE Alert: CVE-2025-41425
Vulnerability Summary: CVE-2025-41425 DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent...
CVE Alert: CVE-2025-53703
Vulnerability Summary: CVE-2025-53703 DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers....
CVE Alert: CVE-2025-54072
Vulnerability Summary: CVE-2025-54072 yt-dlp is a feature-rich command-line audio/video downloader. In versions 2025.06.25 and below, when the --exec option is...
CVE Alert: CVE-2025-48733
Vulnerability Summary: CVE-2025-48733 DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow...
CVE Alert: CVE-2025-7766
Vulnerability Summary: CVE-2025-7766 Lantronix Provisioning Manager is vulnerable to XML external entity attacks in configuration files supplied by network devices,...
CVE Alert: CVE-2025-54141
Vulnerability Summary: CVE-2025-54141 ViewVC is a browser interface for CVS and Subversion version control repositories. In versions 1.1.0 through 1.1.31...
CVE Alert: CVE-2025-54138
Vulnerability Summary: CVE-2025-54138 LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network...
CVE Alert: CVE-2025-54140
Vulnerability Summary: CVE-2025-54140 pyLoad is a free and open-source Download Manager written in pure Python. In version 0.5.0b3.dev89, an authenticated...
