CISA Warns of Active Exploitation of JetBrains and Windows Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws to its Known Exploited Vulnerabilities (KEV)...
GoldDigger Android Trojan Targets Banking Apps in Asia Pacific Countries
A new Android banking trojan named GoldDigger has been found targeting several financial applications with an aim to siphon victims'...
Akira Ransomware Victim: Gruskin Group
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
IBM FileNet Content Manager cross-site scripting | CVE-2023-35905
NAME__________IBM FileNet Content Manager cross-site scriptingPlatforms Affected:IBM FileNet Content Manager 5.5.8 IBM FileNet Content Manager 5.5.10 IBM FileNet Content Manager...
IBM Disconnected Log Collector information disclosure | CVE-2022-22447
NAME__________IBM Disconnected Log Collector information disclosurePlatforms Affected:IBM Disconnected Log Collector 1.0 IBM Disconnected Log Collector 1.8.2Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Disconnected...
Images Slideshow by 2J plugin for WordPress cross-site scripting | CVE-2023-44242
NAME__________Images Slideshow by 2J plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Images Slideshow by 2J plugin for WordPress 1.3.54 WordPress Images...
phpMyFAQ cross-site scripting | CVE-2023-5320
NAME__________phpMyFAQ cross-site scriptingPlatforms Affected:phpMyFAQ phpMyFAQ 2.9.0 phpMyFAQ phpMyFAQ 2.9.6 phpMyFAQ phpMyFAQ 2.9.8 phpMyFAQ phpMyFAQ 2.9.9 phpMyFAQ phpMyFAQ 2.9.10 phpMyFAQ phpMyFAQ...
Blog Filter Plugin for WordPress cross-site scripting | CVE-2023-5295
NAME__________Blog Filter Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress facebook-comment-by-vivacity Plugin for WordPress 1.4Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Blog Filter Plugin for WordPress...
SonicWall Net Extender Windows privilege escalation | CVE-2023-44217
NAME__________SonicWall Net Extender Windows privilege escalationPlatforms Affected:SonicWall NetExtender Windows 10.2.336Risk Level:7.9Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________SonicWall Net Extender Windows could allow a local...
Contractor Contact Form Website to Workflow Tool plugin for WordPress cross-site scripting | CVE-2023-44245
NAME__________Contractor Contact Form Website to Workflow Tool plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Contractor Contact Form Website to Workflow Tool...
phpMyFAQ cross-site scripting | CVE-2023-5319
NAME__________phpMyFAQ cross-site scriptingPlatforms Affected:phpMyFAQ phpMyFAQ 2.9.0 phpMyFAQ phpMyFAQ 2.9.6 phpMyFAQ phpMyFAQ 2.9.8 phpMyFAQ phpMyFAQ 2.9.9 phpMyFAQ phpMyFAQ 2.9.10 phpMyFAQ phpMyFAQ...
FooGallery plugin for WordPress cross-site scripting | CVE-2023-44244
NAME__________FooGallery plugin for WordPress cross-site scriptingPlatforms Affected:WordPress FooGallery Plugin for WordPress 1.8.12 WordPress FooGallery Plugin for WordPress 2.0.30 WordPress FooGallery...
animal-art-lab spoofing | CVE-2023-43297
NAME__________animal-art-lab spoofingPlatforms Affected:animal-art-lab animal-art-lab 13.6.1Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________animal-art-lab could allow a remote attacker to conduct spoofing attacks, caused by the...
mosparo open redirect | CVE-2023-5375
NAME__________mosparo open redirectPlatforms Affected:mosparo mosparo 1.0.1Risk Level:4.3Exploitability:UnprovenConsequences:Other DESCRIPTION__________mosparo could allow a remote attacker to conduct phishing attacks, caused by an...
Dolibarr ERP/CRM cross-site scripting | CVE-2023-5323
NAME__________Dolibarr ERP/CRM cross-site scriptingPlatforms Affected:Dolibarr Dolibarr ERP/CRM 18.0.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Dolibarr ERP/CRM is vulnerable to cross-site scripting, caused by improper...
Qualcomm Chipsets code execution | CVE-2023-33035
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm WCD9380 Qualcomm WSA8830 Qualcomm WSA8835 Qualcomm AQT1000 Qualcomm CSRB31024 Qualcomm WCD9370 Qualcomm WCD9375 Qualcomm WCD9385Risk...
Ministry of Health, Labour and Welfare FD Application XML external entity injection | CVE-2023-42132
NAME__________Ministry of Health, Labour and Welfare FD Application XML external entity injectionPlatforms Affected:Ministry of Health Labour and Welfare FD Application...
FURUNO SYSTEMS wireless LAN access point devices directory traversal | CVE-2023-43627
NAME__________FURUNO SYSTEMS wireless LAN access point devices directory traversalPlatforms Affected:FURUNO SYSTEMS ACERA 1320 01.26 FURUNO SYSTEMS ACERA 1310 01.26Risk Level:6.8Exploitability:UnprovenConsequences:Obtain...
Click To Tweet Plugin for WordPress cross-site scripting | CVE-2023-41856
NAME__________Click To Tweet Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Click To Tweet Plugin for WordPress 2.0.14Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Click To...
Attorney Theme for WordPress cross-site scripting | CVE-2023-41692
NAME__________Attorney Theme for WordPress cross-site scriptingPlatforms Affected:WordPress Attorney Theme for WordPress 3Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Attorney Theme for WordPress is vulnerable...
Linux Kernel privilege escalation | CVE-2023-5345
NAME__________Linux Kernel privilege escalationPlatforms Affected:Linux Kernel 6.5Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Linux Kernel could allow a local authenticated attacker to gain elevated...
Qualcomm Chipsets denial of service | CVE-2023-33026
NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Qualcomm WCD9380 Qualcomm WSA8830 Qualcomm WSA8835 Qualcomm AQT1000 Qualcomm CSRB31024 Qualcomm WCD9370 Qualcomm WCD9375 Qualcomm...
WP Responsive header image slider Support Plugin for WordPress cross-site scripting | CVE-2023-5334
NAME__________WP Responsive header image slider Support Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP Responsive header image slider Support Plugin for...
FURUNO SYSTEMS wireless LAN access point devices cross-site request forgery | CVE-2023-41086
NAME__________FURUNO SYSTEMS wireless LAN access point devices cross-site request forgeryPlatforms Affected:FURUNO SYSTEMS ACERA 1210 02.36 FURUNO SYSTEMS ACERA 1150i 01.35...
