RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2025-4056

July 29, 2025

Vulnerability Summary: CVE-2025-4056 A flaw was found in GLib. A denial of service on Windows platforms may occur if an...

CVE Alert: CVE-2025-26469

July 29, 2025

Vulnerability Summary: CVE-2025-26469 An incorrect default permissions vulnerability exists in the CServerSettings::SetRegistryValues functionality of MedDream PACS Premium 7.3.3.840. A specially...

CVE Alert: CVE-2025-54418

July 29, 2025

Vulnerability Summary: CVE-2025-54418 CodeIgniter is a PHP full-stack web framework. A command injection vulnerability present in versions prior to 4.6.2...

CVE Alert: CVE-2024-49343

July 29, 2025

Vulnerability Summary: CVE-2024-49343 IBM Informix Dynamic Server 12.10 and 14.10 is vulnerable to HTML injection. A remote attacker could inject...

CVE Alert: CVE-2025-27724

July 29, 2025

Vulnerability Summary: CVE-2025-27724 A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream PACS Premium 7.3.3.840. A specially...

CVE Alert: CVE-2025-8279

July 29, 2025

Vulnerability Summary: CVE-2025-8279 Insufficient input validation within GitLab Language Server 7.6.0 and later before 7.30.0 allows arbitrary GraphQL query execution...

[QILIN] – Ransomware Victim: Custom Food Ingredients

July 29, 2025

Ransomware Group: QILIN VICTIM NAME: Custom Food Ingredients NOTE: No files or stolen information are by RedPacket Security. Any legal...

[SAFEPAY] – Ransomware Victim: ingrammicro[.]com

July 29, 2025

Ransomware Group: SAFEPAY VICTIM NAME: ingrammicrocom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[QILIN] – Ransomware Victim: tissot[.]com

July 29, 2025

Ransomware Group: QILIN VICTIM NAME: tissotcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

HackerOne Bug Bounty Disclosure: bypass-no-links-restriction-in-biography-via-protocol-relative-url-yoyomiski

July 29, 2025

Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:yoyomiskiLink to Submitters Profile:https://hackerone.com/yoyomiski Report Title:Bypass "No Links" Restriction in Biography via...

HackerOne Bug Bounty Disclosure: mozilla-vpn-clients-rce-via-file-write-and-path-traversal-trein

July 29, 2025

Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:treinLink to Submitters Profile:https://hackerone.com/trein Report Title:Mozilla VPN Clients: RCE via file write...

[SECUROTROP] – Ransomware Victim: Tiger Communications

July 29, 2025

Ransomware Group: SECUROTROP VICTIM NAME: Tiger Communications NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Druni

July 29, 2025

Ransomware Group: AKIRA VICTIM NAME: Druni NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Hertz Farm Management

July 29, 2025

Ransomware Group: AKIRA VICTIM NAME: Hertz Farm Management NOTE: No files or stolen information are by RedPacket Security. Any legal...

[AKIRA] – Ransomware Victim: Mount Vernon Property Management

July 29, 2025

Ransomware Group: AKIRA VICTIM NAME: Mount Vernon Property Management NOTE: No files or stolen information are by RedPacket Security. Any...

CVE Alert: CVE-2025-54527

July 29, 2025

Vulnerability Summary: CVE-2025-54527 In JetBrains YouTrack before 2025.2.86935, 2025.2.87167, 2025.3.87341, 2025.3.87344 improper iframe configuration in widget sandbox allows popups to...

CVE Alert: CVE-2025-50494

July 29, 2025

Vulnerability Summary: CVE-2025-50494 Improper session invalidation in the component /doctor/change-password.php of PHPGurukul Car Washing Management System v1.0 allows attackers to...

CVE Alert: CVE-2024-49342

July 29, 2025

Vulnerability Summary: CVE-2024-49342 IBM Informix Dynamic Server 12.10 and 14.10 uses an inadequate account lockout setting that could allow a...

CVE Alert: CVE-2025-54528

July 29, 2025

Vulnerability Summary: CVE-2025-54528 In JetBrains TeamCity before 2025.07 a CSRF was possible in GitHub App connection flow Affected Endpoints: No...

CVE Alert: CVE-2025-50493

July 29, 2025

Vulnerability Summary: CVE-2025-50493 Improper session invalidation in the component /doctor/change-password.php of PHPGurukul Doctor Appointment Management System v1 allows attackers to...

CVE Alert: CVE-2025-50490

July 29, 2025

Vulnerability Summary: CVE-2025-50490 Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student Result Management System v2.0 allows attackers to...

CVE Alert: CVE-2025-54532

July 29, 2025

Vulnerability Summary: CVE-2025-54532 In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings via snapshot dependencies Affected...

CVE Alert: CVE-2025-54531

July 29, 2025

Vulnerability Summary: CVE-2025-54531 In JetBrains TeamCity before 2025.07 path traversal was possible via plugin unpacking on Windows Affected Endpoints: No...

CVE Alert: CVE-2025-54530

July 29, 2025

Vulnerability Summary: CVE-2025-54530 In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory permissions Affected Endpoints: No...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed