RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2024-12511

February 4, 2025

Vulnerability Summary: CVE-2024-12511 With address book access, SMB/FTP settings could be modified, redirecting scans and possibly capturing credentials. This requires...

CVE Alert: CVE-2024-12859

February 4, 2025

Vulnerability Summary: CVE-2024-12859 The BoomBox Theme Extensions plugin for WordPress is vulnerable to Local File Inclusion in all versions up...

CVE Alert: CVE-2024-11132

February 4, 2025

Vulnerability Summary: CVE-2024-11132 The Eventer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to,...

CVE Alert: CVE-2024-11133

February 4, 2025

Vulnerability Summary: CVE-2024-11133 The Eventer plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability...

CVE Alert: CVE-2024-11134

February 4, 2025

Vulnerability Summary: CVE-2024-11134 The Eventer plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability...

[CACTUS] – Ransomware Victim: rashtiandrashti[.]com

February 4, 2025

Ransomware Group: CACTUS VICTIM NAME: rashtiandrashticom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[CACTUS] – Ransomware Victim: cornwelltools[.]com

February 4, 2025

Ransomware Group: CACTUS VICTIM NAME: cornwelltoolscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: alojaimi[.]com

February 4, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: alojaimicom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: heartlandrvs[.]com

February 4, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: heartlandrvscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: gaheritagefcu[.]org

February 4, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: gaheritagefcuorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: www[.]aswgr[.]com

February 4, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: wwwaswgrcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2024-56946

February 4, 2025

Vulnerability Summary: CVE-2024-56946 Denial of service in DNS-over-QUIC in Technitium DNS Server

CVE Alert: CVE-2024-57968

February 4, 2025

Vulnerability Summary: CVE-2024-57968 Advantive VeraCore before 2024.4.2.1 allows remote authenticated users to upload files to unintended folders (e.g., ones that...

CVE Alert: CVE-2025-24960

February 4, 2025

Vulnerability Summary: CVE-2025-24960 Jellystat is a free and open source Statistics App for Jellyfin. In affected versions Jellystat is directly...

CVE Alert: CVE-2024-57097

February 4, 2025

Vulnerability Summary: CVE-2024-57097 ClassCMS 4.8 is vulnerable to Cross Site Scripting (XSS) in class/admin/channel.php. Affected Endpoints: No affected endpoints listed....

CVE Alert: CVE-2025-25181

February 4, 2025

Vulnerability Summary: CVE-2025-25181 A SQL injection vulnerability in timeoutWarning.asp in Advantive VeraCore through 2025.1.0 allows remote attackers to execute arbitrary...

CVE Alert: CVE-2024-35177

February 4, 2025

Vulnerability Summary: CVE-2024-35177 Wazuh is a free and open source platform used for threat prevention, detection, and response. It is...

CVE Alert: CVE-2024-47770

February 4, 2025

Vulnerability Summary: CVE-2024-47770 Wazuh is a free and open source platform used for threat prevention, detection, and response. It is...

CVE Alert: CVE-2025-22129

February 4, 2025

Vulnerability Summary: CVE-2025-22129 Tuleap is an Open Source Suite to improve management of software developments and collaboration. In affected versions...

CVE Alert: CVE-2025-24029

February 4, 2025

Vulnerability Summary: CVE-2025-24029 Tuleap is an Open Source Suite to improve management of software developments and collaboration. Users (possibly anonymous...

CVE Alert: CVE-2025-0148

February 4, 2025

Vulnerability Summary: CVE-2025-0148 Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may allow an unauthenticated...

CISA: CISA Releases Two Industrial Control Systems Advisories

February 4, 2025

CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on January 7, 2025. These...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

February 4, 2025

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

February 4, 2025

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed