Cobalt Strike Beacon Detected – 8[.]152[.]194[.]88:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-39458
Vulnerability Summary: CVE-2025-39458 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mikado-Themes...
CVE Alert: CVE-2025-39459
Vulnerability Summary: CVE-2025-39459 Incorrect Privilege Assignment vulnerability in Contempo Themes Real Estate 7 allows Privilege Escalation.This issue affects Real Estate...
CVE Alert: CVE-2025-47577
Vulnerability Summary: CVE-2025-47577 Unrestricted Upload of File with Dangerous Type vulnerability in TemplateInvaders TI WooCommerce Wishlist allows Upload a Web...
CVE Alert: CVE-2025-39451
Vulnerability Summary: CVE-2025-39451 Missing Authorization vulnerability in Crocoblock JetBlocks For Elementor allows Accessing Functionality Not Properly Constrained by ACLs.This issue...
CVE Alert: CVE-2025-39449
Vulnerability Summary: CVE-2025-39449 Missing Authorization vulnerability in Crocoblock JetWooBuilder allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JetWooBuilder:...
CVE Alert: CVE-2025-47581
Vulnerability Summary: CVE-2025-47581 Deserialization of Untrusted Data vulnerability in Elbisnero WordPress Events Calendar Registration & Tickets allows Object Injection.This issue...
CVE Alert: CVE-2025-47284
Vulnerability Summary: CVE-2025-47284 Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was...
CVE Alert: CVE-2025-32924
Vulnerability Summary: CVE-2025-32924 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in roninwp Revy allows...
CVE Alert: CVE-2025-43839
Vulnerability Summary: CVE-2025-43839 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in shanebp BP Messages Tool allows...
CVE Alert: CVE-2025-47283
Vulnerability Summary: CVE-2025-47283 Gardener implements the automated management and operation of Kubernetes clusters as a service. A security vulnerability was...
[NIGHTSPIRE] – Ransomware Victim: Ertl ELECKTRO FELDBACH
Ransomware Group: NIGHTSPIRE VICTIM NAME: Ertl ELECKTRO FELDBACH NOTE: No files or stolen information are by RedPacket Security. Any legal...
[NIGHTSPIRE] – Ransomware Victim: Valentin Hotels
Ransomware Group: NIGHTSPIRE VICTIM NAME: Valentin Hotels NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[RHYSIDA] – Ransomware Victim: Florida Lung
Ransomware Group: RHYSIDA VICTIM NAME: Florida Lung NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-32928
Vulnerability Summary: CVE-2025-32928 Deserialization of Untrusted Data vulnerability in ThemeGoods Altair allows Object Injection.This issue affects Altair: from n/a through...
CVE Alert: CVE-2025-39349
Vulnerability Summary: CVE-2025-39349 Deserialization of Untrusted Data vulnerability in Potenzaglobalsolutions CiyaShop allows Object Injection.This issue affects CiyaShop: from n/a through...
CVE Alert: CVE-2025-31027
Vulnerability Summary: CVE-2025-31027 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jocoxdesign Tiger tiger allows Reflected...
CVE Alert: CVE-2025-32927
Vulnerability Summary: CVE-2025-32927 Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBakery allows Object Injection.This issue affects FoodBakery: from n/a through...
CVE Alert: CVE-2025-39348
Vulnerability Summary: CVE-2025-39348 Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Restaurant WordPress allows Object Injection.This issue affects Grand Restaurant...
CVE Alert: CVE-2025-39365
Vulnerability Summary: CVE-2025-39365 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rocket Apps wProject allows Reflected...
CVE Alert: CVE-2025-32925
Vulnerability Summary: CVE-2025-32925 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FantasticPlugins...
CVE Alert: CVE-2025-32926
Vulnerability Summary: CVE-2025-32926 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThemeGoods Grand Restaurant WordPress...
CVE Alert: CVE-2025-39357
Vulnerability Summary: CVE-2025-39357 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in mojoomla Hospital Management...
CVE Alert: CVE-2025-39356
Vulnerability Summary: CVE-2025-39356 Deserialization of Untrusted Data vulnerability in Chimpstudio Foodbakery Sticky Cart allows Object Injection.This issue affects Foodbakery Sticky...
