RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2025-45406

July 26, 2025

Vulnerability Summary: CVE-2025-45406 A stored cross-site scripting (XSS) vulnerability in CodeIgniter4 v4.6.0 allows attackers to execute arbitrary web scripts or...

CVE Alert: CVE-2025-8164

July 26, 2025

Vulnerability Summary: CVE-2025-8164 A vulnerability has been found in code-projects Public Chat Room 1.0 and classified as critical. This vulnerability...

CVE Alert: CVE-2025-5449

July 26, 2025

Vulnerability Summary: CVE-2025-5449 A flaw was found in the SFTP server message decoding logic of libssh. The issue occurs due...

CVE Alert: CVE-2025-8161

July 26, 2025

Vulnerability Summary: CVE-2025-8161 A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. Affected by this vulnerability...

CVE Alert: CVE-2025-46199

July 26, 2025

Vulnerability Summary: CVE-2025-46199 Cross Site Scripting vulnerability in grav v.1.7.48 and before allows an attacker to execute arbitrary code via...

CVE Alert: CVE-2025-8163

July 26, 2025

Vulnerability Summary: CVE-2025-8163 A vulnerability, which was classified as critical, was found in deerwms deer-wms-2 up to 3.3. This affects...

[LYNX] – Ransomware Victim: Morrow Equipment

July 26, 2025

Ransomware Group: LYNX VICTIM NAME: Morrow Equipment NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2025-52447

July 26, 2025

Vulnerability Summary: CVE-2025-52447 Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux (set-initial-sql tabdoc command modules)...

CVE Alert: CVE-2025-52446

July 26, 2025

Vulnerability Summary: CVE-2025-52446 Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux (tab-doc api modules) allows...

CVE Alert: CVE-2025-52449

July 26, 2025

Vulnerability Summary: CVE-2025-52449 Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (Extensible Protocol...

CVE Alert: CVE-2025-52448

July 26, 2025

Vulnerability Summary: CVE-2025-52448 Authorization Bypass Through User-Controlled Key vulnerability in Salesforce Tableau Server on Windows, Linux (validate-initial-sql api modules) allows...

CVE Alert: CVE-2025-52452

July 26, 2025

Vulnerability Summary: CVE-2025-52452 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Salesforce Tableau Server on...

CVE Alert: CVE-2025-8166

July 26, 2025

Vulnerability Summary: CVE-2025-8166 A vulnerability was found in code-projects Church Donation System 1.0. It has been classified as critical. Affected...

CVE Alert: CVE-2025-8165

July 26, 2025

Vulnerability Summary: CVE-2025-8165 A vulnerability was found in code-projects Food Review System 1.0 and classified as critical. This issue affects...

CVE Alert: CVE-2025-52453

July 26, 2025

Vulnerability Summary: CVE-2025-52453 Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (Flow Data Source modules) allows...

CVE Alert: CVE-2025-52454

July 26, 2025

Vulnerability Summary: CVE-2025-52454 Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (Amazon S3 Connector modules) allows...

CVE Alert: CVE-2025-52455

July 26, 2025

Vulnerability Summary: CVE-2025-52455 Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource...

[ABYSS] – Ransomware Victim: hptc[.]org

July 26, 2025

Ransomware Group: ABYSS VICTIM NAME: hptcorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

2c81c101e8d91863890e04a1aeb6ac58639b7368763c4b5fe0f95650287a1215

Trump Ai Plan Rips The Brakes Out Of The Car And Gives Big Tech Exactly What Itwanted

July 26, 2025

The White House on Wednesday announced its AI Action Plan, unveiling a sweeping anti-regulatory approach that disengages the brakes from...

dcfa9df45d4de2012d4ea81722c27f3b82bc713a27e1da520ab113d45aef002d

The Eff Is 35, But The Battle To Defend Internet Freedom Is Far From Over

July 26, 2025

Interview In July 1990, before the World Wide Web even existed, an unusual alliance was formed to fight for the...

c80527cf4bf2afba3fe9f63287d0474a0ce9e1918c2232c09bb941369fb082c4

Eu Cloud Gang Challenges Broadcom’s $61b Vmware Buy In Court

July 26, 2025

COMMENT Trade group Cloud Infrastructure Services Providers in Europe (CISPE) has filed a formal appeal before the European General Court...

f69e105fdd057db1e8b665bf24deebc9b694de6ece91fdaa9dc582e39a8aeb24

50 Years Ago, Gates And Allen Made The Deal That Launched Microsoft

July 26, 2025

This week marked the 50th anniversary of the birth of several empires. On July 22, 1975, Bill Gates and Paul...

7d644c1535ca7895105ac5bb4498effbceb2f62d69773e925e6a76e96a291ec0

Compromised Amazon Q Extension Told Ai To Delete Everything – And It Shipped

July 26, 2025

The official Amazon Q extension for Visual Studio Code (VS Code) was compromised to include a prompt to wipe the...

b3a61943ee759daee824e8afa03a7f280de9a9c759629835f5759034c956df73

Dns Security Is Important But Dnssec May Be A Failed Experiment

July 26, 2025

Systems Approach Last week I turned on DNSSEC (Domain Name System Security Extensions) for the systemsapproach.org domain. No need to...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed