CVE Alert: CVE-2025-43970
Vulnerability Summary: CVE-2025-43970 An issue was discovered in GoBGP before 3.35.0. pkg/packet/mrt/mrt.go does not properly check the input length, e.g.,...
CVE Alert: CVE-2025-43916
Vulnerability Summary: CVE-2025-43916 Sonos api.sonos.com through 2025-04-21, when the /login/v3/oauth endpoint is used, accepts a redirect_uri containing userinfo in the...
Ghost-Route – Ghost Route Detects If A Next JS Site Is Vulnerable To The Corrupt Middleware Bypass Bug (CVE-2025-29927)
A Python script to check Next.js sites for corrupt middleware vulnerability (CVE-2025-29927). The corrupt middleware vulnerability allows an attacker to...
Cobalt Strike Beacon Detected – 115[.]120[.]232[.]177:4444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 39[.]105[.]197[.]12:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-29287
Vulnerability Summary: CVE-2025-29287 An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary...
CVE Alert: CVE-2025-29659
Vulnerability Summary: CVE-2025-29659 Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmd_listen" function located in the...
CVE Alert: CVE-2025-28121
Vulnerability Summary: CVE-2025-28121 code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) in feedback.php via the...
CVE Alert: CVE-2024-42699
Vulnerability Summary: CVE-2024-42699 Cross Site Scripting vulnerability in Create/Modify article function in Alkacon OpenCMS 17.0 allows remote attacker to inject...
CVE Alert: CVE-2025-29660
Vulnerability Summary: CVE-2025-29660 A vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP...
CVE Alert: CVE-2025-3857
Vulnerability Summary: CVE-2025-3857 When reading binary Ion data through Amazon.IonDotnet using the RawBinaryReader class, Amazon.IonDotnet does not check the number...
CVE Alert: CVE-2025-32793
Vulnerability Summary: CVE-2025-32793 Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Versions 1.15.0 to 1.15.15, 1.16.0...
CVE Alert: CVE-2025-28367
Vulnerability Summary: CVE-2025-28367 mojoPortal
CVE Alert: CVE-2025-43922
Vulnerability Summary: CVE-2025-43922 The FileWave Windows client before 16.0.0, in some non-default configurations, allows an unprivileged local user to escalate...
CVE Alert: CVE-2025-28102
Vulnerability Summary: CVE-2025-28102 A cross-site scripting (XSS) vulnerability in flaskBlog v2.6.1 allows attackers to execute arbitrary web scripts or HTML...
[RHYSIDA] – Ransomware Victim: Acos Favorit
Ransomware Group: RHYSIDA VICTIM NAME: Acos Favorit NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[RALORD] – Ransomware Victim: agromate company
Ransomware Group: RALORD VICTIM NAME: agromate company NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Microsoft Monthly Security Update (March 2025)
Updated Description, Source and Related Links.CVE-2025-24054 is being exploited in the wild. External control of file name or path in...
F5 Products Denial of Service Vulnerability
A vulnerability was identified in F5 Products, a remote attacker could exploit this vulnerabilities to trigger denial of service on the...
SonicWall Products Remote Code Execution Vulnerability
A vulnerability was identified in SonicWall Products. A remote attacker could exploit this vulnerability to trigger remote code execution on the...
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code...
Ubuntu Linux Kernel Multiple Vulnerabilities
Multiple vulnerabilities were identified in Ubuntu Linux Kernel. An attacker could exploit some of these vulnerabilities to trigger denial of...
CVE Alert: CVE-2025-3841
Vulnerability Summary: CVE-2025-3841 A vulnerability, which was classified as problematic, was found in wix-incubator jam up to e87a6fd85cf8fb5ff37b62b2d68f917219d07ae9. This affects...
CVE Alert: CVE-2025-32956
Vulnerability Summary: CVE-2025-32956 ManageWiki is a MediaWiki extension allowing users to manage wikis. Versions before commit f504ed8, are vulnerable to...
