RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2025-22491

March 1, 2025

Vulnerability Summary: CVE-2025-22491 The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software (FRS) application...

CVE Alert: CVE-2024-9019

March 1, 2025

Vulnerability Summary: CVE-2024-9019 The SecuPress Free — WordPress Security plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2024-8425

March 1, 2025

Vulnerability Summary: CVE-2024-8425 The WooCommerce Ultimate Gift Card plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient...

CVE Alert: CVE-2024-9193

March 1, 2025

Vulnerability Summary: CVE-2024-9193 The WHMpress - WHMCS WordPress Integration Plugin plugin for WordPress is vulnerable to Local File Inclusion in...

CVE Alert: CVE-2025-22492

March 1, 2025

Vulnerability Summary: CVE-2025-22492 The connection string visible to users with access to FRSCore database on Foreseer Reporting Software (FRS) VM,...

[INTERLOCK] – Ransomware Victim: Wayne County, Michigan

March 1, 2025

Ransomware Group: INTERLOCK VICTIM NAME: Wayne County, Michigan NOTE: No files or stolen information are by RedPacket Security. Any legal...

[INTERLOCK] – Ransomware Victim: The Smeg Group

March 1, 2025

Ransomware Group: INTERLOCK VICTIM NAME: The Smeg Group NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2024-10860

March 1, 2025

Vulnerability Summary: CVE-2024-10860 The NextMove Lite – Thank You Page for WooCommerce plugin for WordPress is vulnerable to unauthorized submission...

CVE Alert: CVE-2025-1560

March 1, 2025

Vulnerability Summary: CVE-2025-1560 The WOW Entrance Effects (WEE!) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2025-1570

March 1, 2025

Vulnerability Summary: CVE-2025-1570 The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to privilege...

CVE Alert: CVE-2025-1662

March 1, 2025

Vulnerability Summary: CVE-2025-1662 The URL Media Uploader plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up...

CVE Alert: CVE-2025-1319

March 1, 2025

Vulnerability Summary: CVE-2025-1319 The Site Mailer – SMTP Replacement, Email API Deliverability & Email Log plugin for WordPress is vulnerable...

CVE Alert: CVE-2025-1748

March 1, 2025

Vulnerability Summary: CVE-2025-1748 HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify...

CVE Alert: CVE-2025-1746

March 1, 2025

Vulnerability Summary: CVE-2025-1746 Cross-Site Scripting vulnerability in OpenCart versions prior to 4.1.0. This vulnerability allows an attacker to execute JavaScript...

CVE Alert: CVE-2025-1749

March 1, 2025

Vulnerability Summary: CVE-2025-1749 HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify...

CVE Alert: CVE-2025-1300

March 1, 2025

Vulnerability Summary: CVE-2025-1300 CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang...

CVE Alert: CVE-2025-1776

March 1, 2025

Vulnerability Summary: CVE-2025-1776 Cross-Site Scripting (XSS) vulnerability in Soteshop, versions prior to 8.3.4, which could allow remote attackers to execute...

Cobalt Strike Beacon Detected – 101[.]126[.]87[.]67:8001

March 1, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CVE Alert: CVE-2025-0985

March 1, 2025

Vulnerability Summary: CVE-2025-0985 IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD stores potentially sensitive information in environment...

CVE Alert: CVE-2025-1747

March 1, 2025

Vulnerability Summary: CVE-2025-1747 HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify...

CVE Alert: CVE-2025-25461

March 1, 2025

Vulnerability Summary: CVE-2025-25461 A Stored Cross-Site Scripting (XSS) vulnerability exists in SeedDMS 6.0.29. A user or rogue admin with the...

CVE Alert: CVE-2025-25916

March 1, 2025

Vulnerability Summary: CVE-2025-25916 wuzhicms v4.1.0 has a Cross Site Scripting (XSS) vulnerability in del function in \coreframe\app\member\admin\group.php. Affected Endpoints: No...

CVE Alert: CVE-2025-27400

March 1, 2025

Vulnerability Summary: CVE-2025-27400 Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community...

CVE Alert: CVE-2024-54175

March 1, 2025

Vulnerability Summary: CVE-2024-54175 IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow a local user to...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed