Two Russian Nationals Charged for Masterminding Mt. Gox Crypto Exchange Hack
The U.S. Department of Justice (DoJ) has charged two Russian nationals in connection with masterminding the 2014 digital heist of...
Why Now? The Rise of Attack Surface Management
The term "attack surface management" (ASM) went from unknown to ubiquitous in the cybersecurity space over the past few years....
LockBit 3.0 Ransomware Victim: t-s-c[.]eu
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: pneusbeaucerons[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: ai-thermal[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 101[.]43[.]103[.]253:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]143[.]30[.]148:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 108[.]61[.]156[.]31:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of May 29, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Tenda AC10 denial of service | CVE-2023-34571
NAME__________Tenda AC10 denial of servicePlatforms Affected:Tenda M3 1.0.0.12(4856) Tenda AC10 AC1200 15.03.06.23_ENRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Tenda AC10 is...
Chamilo LMS security bypass | CVE-2023-34958
NAME__________Chamilo LMS security bypassPlatforms Affected:Chamilo Chamilo LMS 1.11.18Risk Level:5.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Chamilo LMS could allow a remote attacker to bypass security...
/tg/station tgstation-server information disclosure | CVE-2023-34243
NAME__________/tg/station tgstation-server information disclosurePlatforms Affected:/tg/station tgstation-server 4.0.0 /tg/station tgstation-server 5.12.4Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________/tg/station tgstation-server could allow a remote attacker to...
Slideshow, Image Slider by 2J plugin for WordPress security bypass | CVE-2020-36729
NAME__________Slideshow, Image Slider by 2J plugin for WordPress security bypassPlatforms Affected:2J Slideshow Team Slideshow Image Slider by 2J plugin for...
Tenda AC10 denial of service | CVE-2023-34569
NAME__________Tenda AC10 denial of servicePlatforms Affected:Tenda M3 1.0.0.12(4856) Tenda AC10 AC1200 15.03.06.23_ENRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Tenda AC10 is...
Chamilo LMS cross-site scripting | CVE-2023-34961
NAME__________Chamilo LMS cross-site scriptingPlatforms Affected:Chamilo Chamilo LMS 1.11.18Risk Level:6.1Exploitability:HighConsequences:Gain Access DESCRIPTION__________Chamilo LMS is vulnerable to cross-site scripting, caused by improper...
Login/Signup Popup plugin for WordPress cross-site request forgery | CVE-2020-36715
NAME__________Login/Signup Popup plugin for WordPress cross-site request forgeryPlatforms Affected:XootiX Login/Signup Popup plugin for WordPress 1.4Risk Level:7.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Login/Signup Popup plugin...
Tenda AC10 denial of service | CVE-2023-34570
NAME__________Tenda AC10 denial of servicePlatforms Affected:Tenda M3 1.0.0.12(4856) Tenda AC10 AC1200 15.03.06.23_ENRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Tenda AC10 is...
Fortinet FortiOS and FortiProxy code execution | CVE-2023-22639
NAME__________Fortinet FortiOS and FortiProxy code executionPlatforms Affected:Fortinet FortiOS 6.0.0 Fortinet FortiOS 6.2.0 Fortinet FortiOS 6.4.0 Fortinet FortiProxy 2.0.0 Fortinet FortiProxy...
Chamilo LMS server-side request forgery | CVE-2023-34959
NAME__________Chamilo LMS server-side request forgeryPlatforms Affected:Chamilo Chamilo LMS 1.11.18Risk Level:4.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Chamilo LMS is vulnerable to server-side request forgery, caused...
Tenda AC10 denial of service | CVE-2023-34566
NAME__________Tenda AC10 denial of servicePlatforms Affected:Tenda M3 1.0.0.12(4856) Tenda AC10 AC1200 15.03.06.23_ENRisk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Tenda AC10 is...
Sales Tracker Management System page cross-site scripting | CVE-2023-3184
NAME__________Sales Tracker Management System page cross-site scriptingPlatforms Affected:Risk Level:2.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Sales Tracker Management System is vulnerable to cross-site scripting, caused...
HashiCorp Vault and Vault Enterprise cross-site scripting | CVE-2023-2121
NAME__________HashiCorp Vault and Vault Enterprise cross-site scriptingPlatforms Affected:HashiCorp Vault 1.11.10 HashiCorp Vault 1.12.6 HashiCorp Vault 1.13.2 HashiCorp Vault Enterprise 1.11.10...
Chamilo LMS security bypass | CVE-2023-34962
NAME__________Chamilo LMS security bypassPlatforms Affected:Chamilo Chamilo LMS 1.11.18Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Chamilo LMS could allow a remote attacker to bypass security...
Performance Indicator System cross-site scripting | CVE-2023-3183
NAME__________Performance Indicator System cross-site scriptingPlatforms Affected:Sourcecodester Performance Indicator System 1.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Performance Indicator System is vulnerable to cross-site scripting,...
