RedPacket Security - InfoSec News & Tutorials

99e3b1a8ec47add90fd2c6090752387ce7c06ab402f07e6d69293b6130a5831d

WindowSpy – A Cobalt Strike Beacon Object File Meant For Targetted User Surveillance

April 7, 2023

WindowSpy is a Cobalt Strike Beacon Object File meant for targetted user surveillance. The goal of this project was to...

Almost,All,Security,Systems,Are,Hacked.,Last,Stand.,Vulnerabilities,Of

Daily Threat Intelligence – April 07 – 2023

April 7, 2023

Of late, security researchers stumbled across a group of English-speaking European teenagers who are offering services such as malware-as-a-subscription, hacking...

Researchers Uncover Thriving Phishing Kit Market on Telegram Channels

April 7, 2023

In yet another sign that Telegram is increasingly becoming a thriving hub for cybercrime, researchers have found that threat actors...

LockBit 3.0 Ransomware Victim: bhrcorp[.]org

April 7, 2023

LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

CheckUser extension for MediaWiki denial of service | CVE-2023-29139

April 7, 2023

NAME__________CheckUser extension for MediaWiki denial of servicePlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________CheckUser extension for MediaWiki is vulnerable to a denial...

GrowthExperiments extension for MediaWiki information disclosure | CVE-2023-29140

April 7, 2023

NAME__________GrowthExperiments extension for MediaWiki information disclosurePlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________GrowthExperiments extension for MediaWiki could allow a remote attacker to obtain...

GrowthExperiments extension for MediaWiki information disclosure | CVE-2023-29137

April 7, 2023

MediaWiki denial of service | CVE-2023-29141

April 7, 2023

NAME__________MediaWiki denial of servicePlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________MediaWiki is vulnerable to a denial of service, caused by an auto-block...

D-Link DIR-882 information disclosure | CVE-2023-26925

April 7, 2023

NAME__________D-Link DIR-882 information disclosurePlatforms Affected:Risk Level:5.3Exploitability:Proof of ConceptConsequences:Obtain Information DESCRIPTION__________D-Link DIR-882 could allow a remote attacker to obtain sensitive information,...

Qualcomm Chipsets information disclosure | CVE-2022-25737

April 7, 2023

NAME__________Qualcomm Chipsets information disclosurePlatforms Affected:Qualcomm ChipsetsRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Qualcomm Chipsets could allow a remote attacker to obtain sensitive information, caused...

Pimcore Perspective Editor cross-site scripting | CVE-2023-28850

April 7, 2023

NAME__________Pimcore Perspective Editor cross-site scriptingPlatforms Affected:Pimcore Perspective Editor 1.5.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Pimcore Perspective Editor is vulnerable to cross-site scripting, caused...

Qualcomm Chipsets denial of service | CVE-2022-33223

April 7, 2023

NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Qualcomm ChipsetsRisk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Qualcomm Chipsets is vulnerable to a denial of service, caused...

Bigfork Silverstripe Form Capture cross-site scripting | CVE-2023-28851

April 7, 2023

NAME__________Bigfork Silverstripe Form Capture cross-site scriptingPlatforms Affected:Bigfork Silverstripe Form Capture 0.2.0 Bigfork Silverstripe Form Capture 0.2.3 Bigfork Silverstripe Form Capture...

Qualcomm Chipsets denial of service | CVE-2022-25739

April 7, 2023

Quectel AG550QCN command execution | CVE-2023-26921

April 7, 2023

NAME__________Quectel AG550QCN command executionPlatforms Affected:Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Quectel AG550QCN could allow a remote attacker to execute arbitrary commands...

Qualcomm Chipsets denial of service | CVE-2022-33270

April 7, 2023

Qualcomm Chipsets information disclosure | CVE-2022-25731

April 7, 2023

WP Google Map Plugin for WordPress cross-site scripting | CVE-2023-23978

April 7, 2023

NAME__________WP Google Map Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WordPress Plugin for Google Maps 4.3.9Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WP Google Map...

Team Heateor WordPress Social Comments Plugin for WordPress cross-site scripting | CVE-2023-23977

April 7, 2023

NAME__________Team Heateor WordPress Social Comments Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Team Heateor WordPress Social Comments Plugin Plugin for WordPress...

NetComm NF20MESH, NF20, and NL1902 routers security bypass | CVE-2022-4874

April 7, 2023

NAME__________NetComm NF20MESH, NF20, and NL1902 routers security bypassPlatforms Affected:NetComm NF20MESH NetComm NF20 NetComm NL1902Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NetComm NF20MESH, NF20, and...

Simple Staff List Plugin for WordPress cross-site scripting | CVE-2023-23686

April 7, 2023

NAME__________Simple Staff List Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Simple Staff List Plugin for WordPress 2.2.2Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Staff...

Mastodon information disclosure | CVE-2023-28853

April 7, 2023

NAME__________Mastodon information disclosurePlatforms Affected:Mastodon Mastodon 3.5.7 Mastodon Mastodon 4.0.3 Mastodon Mastodon 4.1.1Risk Level:7.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Mastodon could allow a remote authenticated...

Responsive Vertical Icon Menu Plugin for WordPress cross-site scripting | CVE-2023-23870

April 7, 2023

NAME__________Responsive Vertical Icon Menu Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Responsive Vertical Icon Menu Plugin for WordPress 1.5.8Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting...

Interactive Polish Map Plugin for WordPress cross-site scripting | CVE-2023-23821

April 7, 2023

NAME__________Interactive Polish Map Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Interactive Polish Map Plugin for WordPress 1.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Interactive Polish...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed