RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2024-49317

October 19, 2024

Vulnerability Summary: CVE-2024-49317 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ZIPANG...

CVE Alert: CVE-2024-49291

October 19, 2024

Vulnerability Summary: CVE-2024-49291 Unrestricted Upload of File with Dangerous Type vulnerability in Gora Tech LLC Cooked Pro.This issue affects Cooked...

CVE Alert: CVE-2024-49313

October 19, 2024

Vulnerability Summary: CVE-2024-49313 Cross-Site Request Forgery (CSRF) vulnerability in RudeStan VKontakte Wall Post allows Stored XSS.This issue affects VKontakte Wall...

CVE Alert: CVE-2024-49314

October 19, 2024

Vulnerability Summary: CVE-2024-49314 Unrestricted Upload of File with Dangerous Type vulnerability in 酱茄 JiangQie Free Mini Program allows Upload a...

CVE Alert: CVE-2024-49312

October 19, 2024

Vulnerability Summary: CVE-2024-49312 Server-Side Request Forgery (SSRF) vulnerability in WisdmLabs Edwiser Bridge.This issue affects Edwiser Bridge: from n/a through 3.0.7....

CVE Alert: CVE-2024-10101

October 19, 2024

Vulnerability Summary: CVE-2024-10101 A stored cross-site scripting (XSS) vulnerability exists in binary-husky/gpt_academic version 3.83. The vulnerability occurs at the /file...

CVE Alert: CVE-2024-49318

October 19, 2024

Vulnerability Summary: CVE-2024-49318 Deserialization of Untrusted Data vulnerability in Scott Olson My Reading Library allows Object Injection.This issue affects My...

CVE Alert: CVE-2024-10099

October 19, 2024

Vulnerability Summary: CVE-2024-10099 A stored cross-site scripting (XSS) vulnerability exists in comfyanonymous/comfyui version 0.2.2 and possibly earlier. The vulnerability occurs...

CVE Alert: CVE-2024-49322

October 19, 2024

Vulnerability Summary: CVE-2024-49322 Incorrect Privilege Assignment vulnerability in CodePassenger Job Board Manager for WordPress allows Privilege Escalation.This issue affects Job...

CVE Alert: CVE-2024-10100

October 19, 2024

Vulnerability Summary: CVE-2024-10100 A path traversal vulnerability exists in binary-husky/gpt_academic version 3.83. The vulnerability is due to improper handling of...

CISA: Threat Actors Continue to Exploit OT/ICS through Unsophisticated Means

October 19, 2024

Threat Actors Continue to Exploit OT/ICS through Unsophisticated Means CISA continues to respond to active exploitation of internet-accessible operational technology...

CISA: CISA Warns of Hurricane-Related Scams

October 19, 2024

CISA Warns of Hurricane-Related Scams As Hurricane Helene approaches, CISA urges users to remain on alert for potential malicious cyber...

CISA: CISA Releases Eight Industrial Control Systems Advisories

October 19, 2024

CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on September 24, 2024. These...

CISA: Citrix Releases Security Updates for XenServer and Citrix Hypervisor

October 19, 2024

Citrix Releases Security Updates for XenServer and Citrix Hypervisor Citrix released security updates to address multiple vulnerabilities in XenServer and...

CISA: Cisco Releases Security Updates for IOS and IOS XE Software

October 19, 2024

Cisco Releases Security Updates for IOS and IOS XE Software Cisco released its September 2024 Semiannual Cisco IOS and IOS...

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

October 19, 2024

CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Five Industrial Control Systems Advisories

October 19, 2024

CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on September 26, 2024. These...

CISA: CISA’s VDP Platform 2023 Annual Report Showcases Success

October 19, 2024

CISA’s VDP Platform 2023 Annual Report Showcases Success Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its Vulnerability Disclosure Policy...

CISA: CISA Releases Two Industrial Control Systems Advisories

October 19, 2024

CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 1, 2024. These...

CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Detecting and Mitigating Active Directory Compromises

October 19, 2024

ASD’s ACSC, CISA, and US and International Partners Release Guidance on Detecting and Mitigating Active Directory Compromises Today, the Australian...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed