LockBit 3.0 Ransomware Victim: nal[.]res[.]in
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: hi-schoolpharmacy[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: dawsongroup[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: masterk[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: tcw[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
CISA: Exploitation of Unitronics PLCs used in Water and Wastewater Systems
Exploitation of Unitronics PLCs used in Water and Wastewater Systems CISA is responding to active exploitation(link is external) of Unitronics...
Bouncy Castle for Java denial of service | CVE-2023-33202
NAME__________Bouncy Castle for Java denial of servicePlatforms Affected:The Legion of the Bouncy Castle BC Java 1.72Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Bouncy...
Mattermost Server denial of service | CVE-2023-48268
NAME__________Mattermost Server denial of servicePlatforms Affected:Mattermost Mattermost Server 7.8.12 Mattermost Mattermost Server 8.1.3 Mattermost Mattermost Server 9.0.1 Mattermost Mattermost Server...
Pandora FMS file upload |
NAME__________Pandora FMS file uploadPlatforms Affected:Artica Pandora FMS 773 Artica Pandora FMS 700Risk Level:5.6Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Pandora FMS could allow a remote...
Zyxel USG FLEX series devices information disclosure | CVE-2023-5797
NAME__________Zyxel USG FLEX series devices information disclosurePlatforms Affected:Zyxel USG FLEX ZLD 4.50 Zyxel USG FLEX ZLD 5.37Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Zyxel...
phpseclib denial of service | CVE-2023-49316
NAME__________phpseclib denial of servicePlatforms Affected:phpseclib phpseclib 3.0.33 phpseclib phpseclib 3.0.23 phpseclib phpseclib 3.0.22 phpseclib phpseclib 2.0.45Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________phpseclib...
Knative Serving denial of service | CVE-2023-48713
NAME__________Knative Serving denial of servicePlatforms Affected:Knative Serving 1.10.4 Knative Serving 1.11.2Risk Level:5.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Knative Serving is vulnerable to a...
CodeBard’s Patron Button and Widgets for Patreon Plugin for WordPress cross-site request forgery | CVE-2023-47765
NAME__________CodeBard's Patron Button and Widgets for Patreon Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress CodeBard's Patron Button Plugin for WordPress...
Pandora FMS directory traversal | CVE-2023-41790
NAME__________Pandora FMS directory traversalPlatforms Affected:Artica Pandora FMS 773 Artica Pandora FMS 700Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Pandora FMS could allow a remote...
Pandora FMS cross-site request forgery | CVE-2023-41792
NAME__________Pandora FMS cross-site request forgeryPlatforms Affected:Artica Pandora FMS 773 Artica Pandora FMS 700Risk Level:5.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Pandora FMS is vulnerable to...
Mattermost Server denial of service | CVE-2023-48369
NAME__________Mattermost Server denial of servicePlatforms Affected:Mattermost Mattermost Server 7.8.12Risk Level:4.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mattermost Server is vulnerable to a denial of...
Tribe29 Checkmk Appliance information disclosure | CVE-2023-6287
NAME__________Tribe29 Checkmk Appliance information disclosurePlatforms Affected:Tribe29 Checkmk Appliance 1.6.7Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Tribe29 Checkmk Appliance could allow a local authenticated attacker...
Apache Superset denial of service | CVE-2023-42504
NAME__________Apache Superset denial of servicePlatforms Affected:Apache Superset 2.1.1Risk Level:5.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Apache Superset is vulnerable to a denial of service,...
BD FACSChorus software security bypass | CVE-2023-29066
NAME__________BD FACSChorus software security bypassPlatforms Affected:BD FACSChorus 5.0 BD FACSChorus 5.1 BD FACSChorus 3.0 BD FACSChorus 3.1Risk Level:3.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________BD...
Apache Superset open redirect | CVE-2023-42502
NAME__________Apache Superset open redirectPlatforms Affected:Apache Superset 2.1.1Risk Level:4.8Exploitability:UnprovenConsequences:Other DESCRIPTION__________Apache Superset could allow a remote attacker to conduct phishing attacks, caused...
Apache Superset information disclosure | CVE-2023-42505
NAME__________Apache Superset information disclosurePlatforms Affected:Apache Superset 2.1.1Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Superset could allow a remote authenticated attacker to obtain sensitive...
WP Post Popup Plugin for WordPress cross-site scripting | CVE-2023-4808
NAME__________WP Post Popup Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP Post Popup Plugin for WordPress 3.7.3Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WP Post...
Apache Tomcat HTTP request smuggling | CVE-2023-46589
NAME__________Apache Tomcat HTTP request smugglingPlatforms Affected:Apache Tomcat 8.5.0 Apache Tomcat 9.0.0-M1 Apache Tomcat 10.1.0-M1 Apache Tomcat 11.0.0-M1 Apache Tomcat 11.0.0-M10...
Plesk Installer code execution | CVE-2023-4931
NAME__________Plesk Installer code executionPlatforms Affected:Plesk Plesk Installer 3.27.0.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Plesk Installer could allow a local authenticated attacker to execute...
