Microsoft’s AI-Powered Bing Chat Ads May Lead Users to Malware-Distributing Sites
Malicious ads served inside Microsoft Bing's artificial intelligence (AI) chatbot are being used to distribute malware when searching for popular...
Progress Software Releases Urgent Hotfixes for Multiple Security Flaws in WS_FTP Server
Progress Software has released hotfixes for a critical security vulnerability, alongside seven other flaws, in the WS_FTP Server Ad hoc...
Akira Ransomware Victim: Vertical Development
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: rexgroup[.]co[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: ezpaybuildings[.]net
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: fdf[.]org[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: fdf[.]org[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Zephyr buffer overflow | CVE-2023-4262
NAME__________Zephyr buffer overflowPlatforms Affected:Zephyr Project Zephyr 3.4.0Risk Level:5.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Zephyr is vulnerable to a buffer overflow, caused by improper bounds...
AjaxNewsTicker code execution | CVE-2023-41449
NAME__________AjaxNewsTicker code executionPlatforms Affected:PHPKOBO AjaxNewsTicker 1.05Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________AjaxNewsTicker could allow a remote attacker to execute arbitrary code...
AjaxNewsTicker cross-site scripting | CVE-2023-41448
NAME__________AjaxNewsTicker cross-site scriptingPlatforms Affected:PHPKOBO AjaxNewsTicker 1.05Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________AjaxNewsTicker is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Zephyr buffer overflow | CVE-2023-4260
NAME__________Zephyr buffer overflowPlatforms Affected:Zephyr Project Zephyr 3.4.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Zephyr is vulnerable to a buffer overflow, caused by an off-by-one...
AjaxNewsTicker cross-site scripting | CVE-2023-41453
NAME__________AjaxNewsTicker cross-site scriptingPlatforms Affected:PHPKOBO AjaxNewsTicker 1.05Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________AjaxNewsTicker is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
AjaxNewsTicker cross-site scripting | CVE-2023-41451
NAME__________AjaxNewsTicker cross-site scriptingPlatforms Affected:PHPKOBO AjaxNewsTicker 1.05Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________AjaxNewsTicker is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
AjaxNewsTicker cross-site scripting | CVE-2023-41445
NAME__________AjaxNewsTicker cross-site scriptingPlatforms Affected:PHPKOBO AjaxNewsTicker 1.05Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________AjaxNewsTicker is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Zephyr buffer overflow | CVE-2023-4264
NAME__________Zephyr buffer overflowPlatforms Affected:Zephyr Project Zephyr 3.4.0Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Zephyr is vulnerable to a buffer overflow, caused by improper bounds...
AjaxNewsTicker code execution | CVE-2023-41450
NAME__________AjaxNewsTicker code executionPlatforms Affected:PHPKOBO AjaxNewsTicker 1.05Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________AjaxNewsTicker could allow a remote attacker to execute arbitrary code...
F5 BIG-IP security bypass | CVE-2023-43125
NAME__________F5 BIG-IP security bypassPlatforms Affected:F5 BIG-IP APM 13.0.0 F5 BIG-IP APM 14.0.0 F5 BIG-IP APM 15.0.0 F5 BIG-IP APM 16.0.0Risk...
Symantec Protection Engine information disclosure | CVE-2023-23958
NAME__________Symantec Protection Engine information disclosurePlatforms Affected:Symantec Protection Engine 9.0Risk Level:6.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Symantec Protection Engine could allow a remote authenticated attacker...
Shihonkanri Plus directory traversal | CVE-2023-43825
NAME__________Shihonkanri Plus directory traversalPlatforms Affected:Shihonkanri Plus 9.0.3Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Shihonkanri Plus could allow a local attacker to traverse directories on...
IBM i privilege escalation | CVE-2023-40375
NAME__________IBM i privilege escalationPlatforms Affected:IBM i 7.2 IBM i 7.3 IBM i 7.4 IBM i 7.5Risk Level:7.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Integrated application...
Dreamer CMS information disclosure | CVE-2023-43856
NAME__________Dreamer CMS information disclosurePlatforms Affected:I Teach You Dreamer CMS 4.1.3Risk Level:5.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Dreamer CMS could allow a remote attacker to...
Progress Software WS_FTP Server cross-site request forgery | CVE-2023-40048
NAME__________Progress Software WS_FTP Server cross-site request forgeryPlatforms Affected:Progress Software WS_FTP Server 8.8.1Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Progress Software WS_FTP Server is vulnerable...
AjaxNewsTicker cross-site scripting | CVE-2023-41446
NAME__________AjaxNewsTicker cross-site scriptingPlatforms Affected:PHPKOBO AjaxNewsTicker 1.05Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________AjaxNewsTicker is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Progress Software WS_FTP Server information disclosure | CVE-2023-40049
NAME__________Progress Software WS_FTP Server information disclosurePlatforms Affected:Progress Software WS_FTP Server 8.8.1Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Progress Software WS_FTP could allow a remote...
