CVE Alert: CVE-2025-25507
Vulnerability Summary: CVE-2025-25507 There is a RCE vulnerability in Tenda AC6 15.03.05.16_multi. In the formexeCommand function, the parameter cmdinput will...
CVE Alert: CVE-2025-25505
Vulnerability Summary: CVE-2025-25505 Tenda AC6 15.03.05.16_multi is vulnerable to Buffer Overflow in the sub_452A4 function. Affected Endpoints: No affected endpoints...
[INCRANSOM] – Ransomware Victim: evergreenpnw[.]com
Ransomware Group: INCRANSOM VICTIM NAME: evergreenpnwcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-25878
Vulnerability Summary: CVE-2025-25878 A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of...
CVE Alert: CVE-2020-19248
Vulnerability Summary: CVE-2020-19248 SQL Injection vulnerability in PbootCMS 1.4.1 in parsing if statements in templates, resulting in a malicious user's...
CVE Alert: CVE-2025-25877
Vulnerability Summary: CVE-2025-25877 A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of...
CVE Alert: CVE-2025-25772
Vulnerability Summary: CVE-2025-25772 A Cross-Site Request Forgery (CSRF) in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to...
CVE Alert: CVE-2025-25605
Vulnerability Summary: CVE-2025-25605 Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the apcli_wps_gen_pincode function in mtkwifi.lua. Affected Endpoints: No...
CVE Alert: CVE-2025-25604
Vulnerability Summary: CVE-2025-25604 Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable function in mtkwifi.lua. Affected Endpoints: No...
CVE Alert: CVE-2025-27109
Vulnerability Summary: CVE-2025-27109 solid-js is a declarative, efficient, and flexible JavaScript library for building user interfaces. In affected versions Inserts/JSX...
CVE Alert: CVE-2025-25282
Vulnerability Summary: CVE-2025-25282 RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine based on deep document understanding. An authenticated user can...
CVE Alert: CVE-2025-1555
Vulnerability Summary: CVE-2025-1555 A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects...
CVE Alert: CVE-2025-27108
Vulnerability Summary: CVE-2025-27108 dom-expressions is a Fine-Grained Runtime for Performant DOM Rendering. In affected versions the use of javascript's `.replace()`...
US Military Credentials Compromised: A Major Cybersecurity Threat
The security of US military and defense credentials is at risk due to widespread infostealer malware, raising serious concerns. Recent...
Russian State Hackers Exploit Signal to Eavesdrop on Ukrainians
Russian state-aligned hackers are increasingly targeting secure messaging apps like Signal Messenger to spy on Ukrainian officials and military personnel....
Data Breach Alert: Finastra Notifies Customers of Security Incident
Finastra has informed its customers about a significant data breach that occurred over three months ago, impacting their sensitive information....
Data Breach at Genea IVF Clinic: Urgent Investigation Underway
In a concerning revelation, Genea, an Australian IVF clinic, has announced a data breach resulting from a cyber incident, raising...
Insight Partners Faces Cyber Attack: Key Findings and Implications
In January 2025, New York-based venture capital firm Insight Partners confirmed it experienced a significant cyber attack that raised concerns...
AUKUS Nuclear Submarine Secrets Targeted by Foreign Spies, Warns Australia’s Intelligence Chief
Australia's intelligence chief, Mike Burgess, warns that foreign spies are increasingly focusing on AUKUS nuclear submarine secrets as part of...
Critical Jupiter X Core Plugin Vulnerability Exposes 90,000 WordPress Sites
A critical vulnerability in the Jupiter X Core WordPress plugin, affecting over 90,000 sites, has raised serious security concerns among...
Palo Alto Networks Firewall Vulnerabilities: Hackers Exploit Three Critical Flaws
Cybersecurity threats are on the rise as hackers exploit critical vulnerabilities in Palo Alto Networks firewalls. The unpatched flaws present...
Ghost Ransomware: CISA and FBI Issue Global Threat Alert
The Cybersecurity and Infrastructure Security Agency (CISA) along with the FBI have raised alarms regarding the growing threat of Ghost...
Infostealers Compromise Over 330 Million Credentials: Insights from 2024 Report
Infostealers have emerged as a critical threat vector, compromising over 330 million credentials last year, as highlighted in a recent...
Mobile Phishing Attacks Surge: 16% of Incidents Recorded in the US
Mobile phishing attacks, often referred to as 'mishing', have seen a notable rise with alarming statistics pointing to a concerning...
