CVE Alert: CVE-2024-13525
Vulnerability Summary: CVE-2024-13525 The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
CVE Alert: CVE-2024-13513
Vulnerability Summary: CVE-2024-13513 The Oliver POS – A WooCommerce Point of Sale (POS) plugin for WordPress is vulnerable to Sensitive...
CVE Alert: CVE-2024-13563
Vulnerability Summary: CVE-2024-13563 The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's forgot-password...
[FOG] – Ransomware Victim: Gitlabs: Acqua development, QBurst, Pamyra[.]de
Ransomware Group: FOG VICTIM NAME: Gitlabs: Acqua development, QBurst, Pamyrade NOTE: No files or stolen information are by RedPacket Security....
CVE Alert: CVE-2025-0935
Vulnerability Summary: CVE-2025-0935 The Media Library Folders plugin for WordPress is vulnerable to unauthorized plugin settings change due to a...
CVE Alert: CVE-2024-13752
Vulnerability Summary: CVE-2024-13752 The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts...
CVE Alert: CVE-2025-1005
Vulnerability Summary: CVE-2025-1005 The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image...
CVE Alert: CVE-2024-12562
Vulnerability Summary: CVE-2024-12562 The s2Member Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to,...
CVE Alert: CVE-2024-10581
Vulnerability Summary: CVE-2024-10581 The DirectoryPress Frontend plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,...
CVE Alert: CVE-2024-13834
Vulnerability Summary: CVE-2024-13834 The Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme plugin for WordPress...
CVE Alert: CVE-2024-13488
Vulnerability Summary: CVE-2024-13488 The LTL Freight Quotes – Estes Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2025-0822
Vulnerability Summary: CVE-2025-0822 Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including,...
CVE Alert: CVE-2024-13500
Vulnerability Summary: CVE-2024-13500 The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts...
CVE Alert: CVE-2024-13439
Vulnerability Summary: CVE-2024-13439 The Team – Team Members Showcase Plugin plugin for WordPress is vulnerable to unauthorized access due to...
[FLOCKER] – Ransomware Victim: A*u[.]edu[.]au
Ransomware Group: FLOCKER VICTIM NAME: A*ueduau NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
China-Linked Espionage Tools in Ransomware Attack: New Connections Revealed
China-linked espionage tools have emerged in a recent ransomware attack, pointing to new connections between state-sponsored activities and cybercrime. In...
Device Code Phishing: Russian Hackers Target Microsoft 365 Accounts
Russian hackers are using device code phishing to compromise Microsoft 365 accounts, raising serious security concerns for users. In a...
AI Security Institute Transformation: The UK’s New Approach to AI Risks
The UK's AI Safety Institute has officially rebranded as the AI Security Institute, aligning with the government's renewed focus on...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
CISA: Microsoft Releases January 2025 Security Updates
Microsoft Releases January 2025 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook
CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook Today, CISA released the Microsoft Expanded Cloud Logs Implementation Playbook to help...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
