CVE Alert: CVE-2024-12066
Vulnerability Summary: CVE-2024-12066 The SMSA Shipping(official) plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path...
CVE Alert: CVE-2024-11975
Vulnerability Summary: CVE-2024-11975 The Reactflow Visitor Recording and Heatmaps plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
CVE Alert: CVE-2024-11938
Vulnerability Summary: CVE-2024-11938 The One Click Upsell Funnel for WooCommerce – Funnel Builder for WordPress, Create WooCommerce Upsell, Post-Purchase Upsell...
CVE Alert: CVE-2024-11682
Vulnerability Summary: CVE-2024-11682 The G Web Pro Store Locator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the...
CVE Alert: CVE-2024-11287
Vulnerability Summary: CVE-2024-11287 The Ebook Store plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of...
[MONTI] – Ransomware Victim: ibericar
Ransomware Group: MONTI VICTIM NAME: ibericar NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: gtsportcarrental[.]com has been hacked
Ransomware Group: FUNKSEC VICTIM NAME: gtsportcarrentalcom has been hacked NOTE: No files or stolen information are by RedPacket Security. Any...
[FUNKSEC] – Ransomware Victim: Hello twitter
Ransomware Group: FUNKSEC VICTIM NAME: Hello twitter NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[8BASE] – Ransomware Victim: Sicoob
Ransomware Group: 8BASE VICTIM NAME: Sicoob NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Cobalt Strike Beacon Detected – 185[.]73[.]124[.]241:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]153[.]97[.]202:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CovenantC2 Detected – 34[.]132[.]16[.]207:443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2024-12771
Vulnerability Summary: CVE-2024-12771 The eCommerce Product Catalog Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
CVE Alert: CVE-2024-12262
Vulnerability Summary: CVE-2024-12262 The Ebook Store plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'step' parameter in...
CVE Alert: CVE-2024-12635
Vulnerability Summary: CVE-2024-12635 The WP Docs plugin for WordPress is vulnerable to time-based SQL Injection via the 'dir_id' parameter in...
CVE Alert: CVE-2024-12697
Vulnerability Summary: CVE-2024-12697 The real.Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and...
CVE Alert: CVE-2024-12721
Vulnerability Summary: CVE-2024-12721 The Custom Product Tabs For WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all...
CVE Alert: CVE-2024-11808
Vulnerability Summary: CVE-2024-11808 The Pingmeter Uptime Monitoring plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the '_wpnonce' parameter...
CVE Alert: CVE-2024-10797
Vulnerability Summary: CVE-2024-10797 The Full Screen Menu for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions...
CVE Alert: CVE-2024-9545
Vulnerability Summary: CVE-2024-9545 The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
CVE Alert: CVE-2024-12588
Vulnerability Summary: CVE-2024-12588 The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
CVE Alert: CVE-2024-10453
Vulnerability Summary: CVE-2024-10453 The Elementor Website Builder – More than Just a Page Builder plugin for WordPress is vulnerable to...
CVE Alert: CVE-2024-11688
Vulnerability Summary: CVE-2024-11688 The LaTeX2HTML plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'ver' or 'date' parameter...
CVE Alert: CVE-2024-12558
Vulnerability Summary: CVE-2024-12558 The WP BASE Booking of Appointments, Services and Events plugin for WordPress is vulnerable to unauthorized access...
