[INTERLOCK] – Ransomware Victim: Wayne County, Michigan
Ransomware Group: INTERLOCK VICTIM NAME: Wayne County, Michigan NOTE: No files or stolen information are by RedPacket Security. Any legal...
[INTERLOCK] – Ransomware Victim: The Smeg Group
Ransomware Group: INTERLOCK VICTIM NAME: The Smeg Group NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2024-10860
Vulnerability Summary: CVE-2024-10860 The NextMove Lite – Thank You Page for WooCommerce plugin for WordPress is vulnerable to unauthorized submission...
CVE Alert: CVE-2025-1560
Vulnerability Summary: CVE-2025-1560 The WOW Entrance Effects (WEE!) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...
CVE Alert: CVE-2025-1570
Vulnerability Summary: CVE-2025-1570 The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to privilege...
CVE Alert: CVE-2025-1662
Vulnerability Summary: CVE-2025-1662 The URL Media Uploader plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up...
CVE Alert: CVE-2025-1319
Vulnerability Summary: CVE-2025-1319 The Site Mailer – SMTP Replacement, Email API Deliverability & Email Log plugin for WordPress is vulnerable...
CVE Alert: CVE-2025-1748
Vulnerability Summary: CVE-2025-1748 HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify...
CVE Alert: CVE-2025-1746
Vulnerability Summary: CVE-2025-1746 Cross-Site Scripting vulnerability in OpenCart versions prior to 4.1.0. This vulnerability allows an attacker to execute JavaScript...
CVE Alert: CVE-2025-1749
Vulnerability Summary: CVE-2025-1749 HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify...
CVE Alert: CVE-2025-1300
Vulnerability Summary: CVE-2025-1300 CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang...
CVE Alert: CVE-2025-1776
Vulnerability Summary: CVE-2025-1776 Cross-Site Scripting (XSS) vulnerability in Soteshop, versions prior to 8.3.4, which could allow remote attackers to execute...
Cobalt Strike Beacon Detected – 101[.]126[.]87[.]67:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-0985
Vulnerability Summary: CVE-2025-0985 IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD stores potentially sensitive information in environment...
CVE Alert: CVE-2025-1747
Vulnerability Summary: CVE-2025-1747 HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify...
CVE Alert: CVE-2025-25461
Vulnerability Summary: CVE-2025-25461 A Stored Cross-Site Scripting (XSS) vulnerability exists in SeedDMS 6.0.29. A user or rogue admin with the...
CVE Alert: CVE-2025-25916
Vulnerability Summary: CVE-2025-25916 wuzhicms v4.1.0 has a Cross Site Scripting (XSS) vulnerability in del function in \coreframe\app\member\admin\group.php. Affected Endpoints: No...
CVE Alert: CVE-2025-27400
Vulnerability Summary: CVE-2025-27400 Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community...
CVE Alert: CVE-2024-54175
Vulnerability Summary: CVE-2024-54175 IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow a local user to...
CVE Alert: CVE-2025-24318
Vulnerability Summary: CVE-2025-24318 Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to...
CVE Alert: CVE-2025-24316
Vulnerability Summary: CVE-2025-24316 The Dario Health Internet-based server infrastructure is vulnerable due to exposure of development environment details, which could...
CVE Alert: CVE-2025-20060
Vulnerability Summary: CVE-2025-20060 An attacker could expose cross-user personal identifiable information (PII) and personal health information transmitted to the Android...
CVE Alert: CVE-2025-23405
Vulnerability Summary: CVE-2025-23405 Unauthenticated log effects metrics gathering incident response efforts and potentially exposes risk of injection attacks (ex log...
[RHYSIDA] – Ransomware Victim: Newton & Associates, Inc
Ransomware Group: RHYSIDA VICTIM NAME: Newton & Associates, Inc NOTE: No files or stolen information are by RedPacket Security. Any...
