CISA: Microsoft Releases January 2025 Security Updates
Microsoft Releases January 2025 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...
CVE Alert: CVE-2024-52938
Vulnerability Summary: CVE-2024-52938 Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware...
CVE Alert: CVE-2024-56065
Vulnerability Summary: CVE-2024-56065 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saleswonder.biz Team WP2LEADS allows Reflected...
CVE Alert: CVE-2025-22828
Vulnerability Summary: CVE-2025-22828 CloudStack users can add and read comments (annotations) on resources they are authorised to access. Due to...
CVE Alert: CVE-2024-56301
Vulnerability Summary: CVE-2024-56301 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eniture Technology Distance Based Shipping...
CVE Alert: CVE-2025-22499
Vulnerability Summary: CVE-2025-22499 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FAKTOR VIER F4 Post Tree...
CVE Alert: CVE-2025-22570
Vulnerability Summary: CVE-2025-22570 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Miloš Đekić Inline Tweets allows...
CVE Alert: CVE-2025-22498
Vulnerability Summary: CVE-2025-22498 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in New Normal LLC LucidLMS allows...
CVE Alert: CVE-2025-22337
Vulnerability Summary: CVE-2025-22337 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infosoft Consultant Order Audit Log...
CVE Alert: CVE-2025-22344
Vulnerability Summary: CVE-2025-22344 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Convoy Media Category Library allows...
CVE Alert: CVE-2025-22314
Vulnerability Summary: CVE-2025-22314 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Scripts Food Store –...
[SARCOMA] – Ransomware Victim: Boart & Wire
Ransomware Group: SARCOMA VICTIM NAME: Boart & Wire NOTE: No files or stolen information are by RedPacket Security. Any legal...
[RHYSIDA] – Ransomware Victim: The Chicano Federation
Ransomware Group: RHYSIDA VICTIM NAME: The Chicano Federation NOTE: No files or stolen information are by RedPacket Security. Any legal...
HackerOne Bug Bounty Disclosure: blind-ssrf-vulnerability-in-appstore-release-upload-form-offensiveops
Company Name: Nextcloud Company HackerOne URL: https://hackerone.com/nextcloud Submitted By:offensiveopsLink to Submitters Profile:https://hackerone.com/offensiveops Report Title:Blind SSRF Vulnerability in Appstore Release Upload...
HackerOne Bug Bounty Disclosure: critical-data-breach-big-data-for-all-domains-shezxi
Company Name: Basecamp Company HackerOne URL: https://hackerone.com/basecamp Submitted By:shezxiLink to Submitters Profile:https://hackerone.com/shezxi Report Title:Critical Data Breach - Big Data for...
CISA: Fortinet Releases Security Updates for Multiple Products
Fortinet Releases Security Updates for Multiple Products Fortinet released security updates to address vulnerabilities in multiple Fortinet products. A cyber...
CISA: CISA Releases the JCDC AI Cybersecurity Collaboration Playbook and Fact Sheet
CISA Releases the JCDC AI Cybersecurity Collaboration Playbook and Fact Sheet Today, CISA released the JCDC AI Cybersecurity Collaboration Playbook...
[RANSOMHUB] – Ransomware Victim: udb[.]net
Ransomware Group: RANSOMHUB VICTIM NAME: udbnet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-22514
Vulnerability Summary: CVE-2025-22514 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yamna Tatheer KNR Author List...
CVE Alert: CVE-2025-22567
Vulnerability Summary: CVE-2025-22567 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in trustist TRUSTist REVIEWer allows Reflected...
CVE Alert: CVE-2025-22506
Vulnerability Summary: CVE-2025-22506 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SmartAgenda Smart Agenda allows Stored...
CVE Alert: CVE-2025-22569
Vulnerability Summary: CVE-2025-22569 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grandslambert Featured Page Widget allows...
CVE Alert: CVE-2025-22568
Vulnerability Summary: CVE-2025-22568 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Paramveer Singh for Arete IT...
CVE Alert: CVE-2025-22586
Vulnerability Summary: CVE-2025-22586 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Detlef Stöver WPEX Replace DB...
