RedPacket Security - InfoSec News & Tutorials

Cobalt Stike Beacon Detected – 139[.]155[.]145[.]128:443

June 2, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 114[.]115[.]201[.]249:6666

June 2, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

DedeCMS code execution | CVE-2023-2928

June 2, 2023

NAME__________DedeCMS code executionPlatforms Affected:DedeCMS DedeCMS 5.7.87 DedeCMS DedeCMS 5.7.93 DedeCMS DedeCMS 5.7.95 DedeCMS DedeCMS 5.7.97Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________DedeCMS could allow...

Integration for Contact Form 7 and Zoho CRM, Bigin Plugin for WordPress cross-site request forgery | CVE-2023-25976

June 2, 2023

NAME__________Integration for Contact Form 7 and Zoho CRM, Bigin Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Integration for Contact Form...

Comment System cross-site scripting | CVE-2023-2922

June 2, 2023

NAME__________Comment System cross-site scriptingPlatforms Affected:Sourcecodester Comment System 1.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Comment System is vulnerable to cross-site scripting, caused by improper...

Bus Dispatch and Information System SQL injection | CVE-2023-2951

June 2, 2023

NAME__________Bus Dispatch and Information System SQL injectionPlatforms Affected:code-projects Bus Dispatch and Information System 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Bus Dispatch and Information...

Students Online Internship Timesheet System SQL injection | CVE-2023-2955

June 2, 2023

NAME__________Students Online Internship Timesheet System SQL injectionPlatforms Affected:Sourcecodester Students Online Internship Timesheet System 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Students Online Internship Timesheet...

Advantech WebAccess/SCADA code execution | CVE-2023-2866

June 2, 2023

NAME__________Advantech WebAccess/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 8.4.5Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Advantech WebAccess/SCADA could allow a remote authenticated attacker to execute arbitrary...

Krayin CRM cross-site scripting | CVE-2023-2925

June 2, 2023

NAME__________Krayin CRM cross-site scriptingPlatforms Affected:Webkul Software Krayin CRM 1.2.4Risk Level:2.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Krayin CRM is vulnerable to cross-site scripting, caused by...

Pimcore directory traversal | CVE-2023-2984

June 2, 2023

NAME__________Pimcore directory traversalPlatforms Affected:Pimcore Pimcore 10.5.21Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Pimcore could allow a remote authenticated attacker to traverse directories on the...

Faculty Evaluation System SQL injection | CVE-2023-2962

June 2, 2023

NAME__________Faculty Evaluation System SQL injectionPlatforms Affected:Sourcecodester Faculty Evaluation System 1.0Risk Level:4.7Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Faculty Evaluation System is vulnerable to SQL injection....

Xibo CMS SQL injection | CVE-2023-33179

June 2, 2023

NAME__________Xibo CMS SQL injectionPlatforms Affected:Xibo CMS 3.3.4 Xibo CMS 2.3.16Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Xibo CMS is vulnerable to SQL injection. A...

Broadcom Advanced Secure Gateway and Broadcom Content Analysis cross-site scripting | CVE-2023-23954

June 2, 2023

NAME__________Broadcom Advanced Secure Gateway and Broadcom Content Analysis cross-site scriptingPlatforms Affected:Broadcom Symantec Advanced Secure Gateway (ASG) 6.6 Broadcom Symantec Advanced...

Shop Beat Solutions LTD Shop Beat Media Player security bypass | CVE-2022-36249

June 2, 2023

NAME__________Shop Beat Solutions LTD Shop Beat Media Player security bypassPlatforms Affected:Shop Beat Solutions LTD Shop Beat Media Player 2.5.95 Shop...

Favorites Plugin for WordPress cross-site scripting | CVE-2023-2304

June 2, 2023

NAME__________Favorites Plugin for WordPress cross-site scriptingPlatforms Affected:Fatek Automation FvDesignerRisk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Favorites Plugin for WordPress is vulnerable to cross-site scripting,...

Students Online Internship Timesheet System cross-site scripting | CVE-2023-2973

June 2, 2023

NAME__________Students Online Internship Timesheet System cross-site scriptingPlatforms Affected:Sourcecodester Students Online Internship Timesheet System 1.0Risk Level:2.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Students Online Internship Timesheet...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed