WAGO devices denial of service | CVE-2023-1619
NAME__________WAGO devices denial of servicePlatforms Affected:WAGO 750-8202 FW 22 WAGO 750-8203 FW 22 WAGO 750-8204 FW 22 WAGO 750-8206 FW...
Retro Cellphone Online Store SQL injection | CVE-2023-3396
NAME__________Retro Cellphone Online Store SQL injectionPlatforms Affected:CampCodes Retro Cellphone Online Store 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Retro Cellphone Online Store is vulnerable...
WAGO devices denial of service | CVE-2023-1150
NAME__________WAGO devices denial of servicePlatforms Affected:WAGO 750-823 FW 10 WAGO 750-332 FW 10 WAGO 750-862 FW 10 WAGO 750-890 FW...
Coupon Affiliates Plugin for WordPress cross-site scripting | CVE-2023-28992
NAME__________Coupon Affiliates Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Coupon Affiliates Plugin for WordPress 5.4.3Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Coupon Affiliates Plugin for...
Optin Forms Plugin for WordPress cross-site scripting | CVE-2023-29434
NAME__________Optin Forms Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Optin Forms Plugin for WordPress 1.3.1Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Optin Forms Plugin for...
TheRoof Theme for WordPress cross-site scripting | CVE-2023-29430
NAME__________TheRoof Theme for WordPress cross-site scriptingPlatforms Affected:WordPress TheRoof Theme for WordPress 1.0.3Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________TheRoof Theme for WordPress is vulnerable...
Frame Shortcode Plugin for WordPress cross-site scripting | CVE-2023-29436
NAME__________Frame Shortcode Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Frame Shortcode Plugin for WordPress 1.0.5Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Frame Shortcode Plugin for...
Cancel order request WooCommerce Plugin for WordPress cross-site scripting | CVE-2023-29423
NAME__________Cancel order request WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Cancel order request WooCommerce for WordPress 1.3.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cancel...
Apache Airflow ODBC Provider and MSSQL Provider information disclosure | CVE-2023-35798
NAME__________Apache Airflow ODBC Provider and MSSQL Provider information disclosurePlatforms Affected:Apache Airflow ODBC Provider 3.3.0 Apache Airflow MSSQL Provider 3.4.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain...
Conditional extra fees for woocommerce Plugin for WordPress cross-site scripting | CVE-2023-29093
NAME__________Conditional extra fees for woocommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Conditional extra fees for woocommerce Plugin for WordPress 1.0.96Risk...
Apache Airflow ODBC Provider privilege escalation | CVE-2023-34395
NAME__________Apache Airflow ODBC Provider privilege escalationPlatforms Affected:Apache Airflow ODBC Provider 3.3.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Apache Airflow ODBC Provider could allow a...
ShiftController Employee Shift Scheduling Plugin for WordPress cross-site scripting | CVE-2023-29424
NAME__________ShiftController Employee Shift Scheduling Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress ShiftController Employee Shift Scheduling Plugin for WordPress 4.9.23Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting...
New Fortinet’s FortiNAC Vulnerability Exposes Networks to Code Execution Attacks
Fortinet has rolled out updates to address a critical security vulnerability impacting its FortiNAC network access control solution that could...
NOESCAPE Ransomware Victim: Cyril Johnston Hire
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
NOESCAPE Ransomware Victim: Promotion Fulfillment Center
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
NOESCAPE Ransomware Victim: Credit Team
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
BianLian Ransomware Victim: Hiberus Tecnología
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Karakurt Ransomware Victim: Reeds Spring School District
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
New techniques added to the NCSC’s ‘risk management toolbox’
New techniques added to the NCSC’s ‘risk management toolbox’ It has been 5 years since we last updated our risk...
Suncor Energy cyberattack impacts Petro-Canada gas stations
Petro-Canada gas stations across Canada are impacted by technical problems preventing customers from paying with credit card or rewards points...
New PindOS JavaScript dropper deploys Bumblebee, IcedID malware
Security researchers discovered a new malicious tool they named PindOS that delivers the Bumblebee and IcedID malware typically associated with...
Hackers steal data of 45,000 New York City students in MOVEit breach
The New York City Department of Education (NYC DOE) says hackers stole documents containing the sensitive personal information of up...
Anatsa Android trojan now steals banking info from users in US, UK
A new mobile malware campaign since March 2023 pushes the Android banking trojan 'Anatsa' to online banking customers in the...
Man charged in US for running ‘Monopoly’ darknet drug market
A 33-year-old man from Serbia has been extradited from Austria to the United States to face charges of running a...
