CVE Alert: CVE-2025-48923
Vulnerability Summary: CVE-2025-48923 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Toc.Js allows Cross-Site Scripting...
CVE Alert: CVE-2025-5966
Vulnerability Summary: CVE-2025-5966 Zohocorp ManageEngine Exchange reporter Plus version 5722 and below are vulnerable to Stored XSS in the Attachments...
CVE Alert: CVE-2025-52573
Vulnerability Summary: CVE-2025-52573 iOS Simulator MCP Server (ios-simulator-mcp) is a Model Context Protocol (MCP) server for interacting with iOS simulators....
CVE Alert: CVE-2025-48921
Vulnerability Summary: CVE-2025-48921 Cross-Site Request Forgery (CSRF) vulnerability in Drupal Open Social allows Cross Site Request Forgery.This issue affects Open...
CVE Alert: CVE-2025-48922
Vulnerability Summary: CVE-2025-48922 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal GLightbox allows Cross-Site Scripting...
CVE Alert: CVE-2025-5682
Vulnerability Summary: CVE-2025-5682 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Klaro Cookie & Consent...
CVE Alert: CVE-2025-6694
Vulnerability Summary: CVE-2025-6694 A vulnerability has been found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This vulnerability affects unknown...
CVE Alert: CVE-2025-6695
Vulnerability Summary: CVE-2025-6695 A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This issue affects some unknown...
CVE Alert: CVE-2025-6676
Vulnerability Summary: CVE-2025-6676 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Simple XML sitemap allows...
CVE Alert: CVE-2025-6677
Vulnerability Summary: CVE-2025-6677 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Paragraphs table allows Cross-Site...
[WORLDLEAKS] – Ransomware Victim: Tech Mahindra
Ransomware Group: WORLDLEAKS VICTIM NAME: Tech Mahindra NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[QILIN] – Ransomware Victim: greatcdltraining[.]com
Ransomware Group: QILIN VICTIM NAME: greatcdltrainingcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: elpasoglass[.]com
Ransomware Group: QILIN VICTIM NAME: elpasoglasscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: broadleafgame[.]com
Ransomware Group: QILIN VICTIM NAME: broadleafgamecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: buffalomarine[.]com
Ransomware Group: QILIN VICTIM NAME: buffalomarinecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-6674
Vulnerability Summary: CVE-2025-6674 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal CKEditor5 Youtube allows Cross-Site...
CVE Alert: CVE-2025-6709
Vulnerability Summary: CVE-2025-6709 The MongoDB Server is susceptible to a denial of service vulnerability due to improper handling of specific...
CVE Alert: CVE-2025-6710
Vulnerability Summary: CVE-2025-6710 MongoDB Server may be susceptible to stack overflow due to JSON parsing mechanism, where specifically crafted JSON...
CVE Alert: CVE-2025-6707
Vulnerability Summary: CVE-2025-6707 Under certain conditions, an authenticated user request may execute with stale privileges following an intentional change by...
CVE Alert: CVE-2025-6675
Vulnerability Summary: CVE-2025-6675 Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Enterprise MFA - TFA for Drupal...
CVE Alert: CVE-2025-6706
Vulnerability Summary: CVE-2025-6706 An authenticated user may trigger a use after free that may result in MongoDB Server crash and...
CVE Alert: CVE-2025-29331
Vulnerability Summary: CVE-2025-29331 An issue in MHSanaei 3x-ui before v.2.5.3 and before allows a remote attacker to execute arbitrary code...
CVE Alert: CVE-2025-52902
Vulnerability Summary: CVE-2025-52902 File Browser provides a file managing interface within a specified directory and it can be used to...
CVE Alert: CVE-2024-56915
Vulnerability Summary: CVE-2024-56915 Netbox Community v4.1.7 and fixed in v.4.2.2 is vulnerable to Cross Site Scripting (XSS) via the RSS...
