[RANSOMHUB] – Ransomware Victim: domainindustries[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: domainindustriescom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: rollxvans[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: rollxvanscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-9060
Vulnerability Summary: CVE-2024-9060 The AVIF & SVG Uploader plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2024-9241
Vulnerability Summary: CVE-2024-9241 The PDF Image Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use...
CVE Alert: CVE-2024-9289
Vulnerability Summary: CVE-2024-9289 The WordPress & WooCommerce Affiliate Program plugin for WordPress is vulnerable to authentication bypass in all versions...
CVE Alert: CVE-2023-3441
Vulnerability Summary: CVE-2023-3441 An issue has been discovered in GitLab EE/CE affecting all versions starting from 8.0 before 16.4. The...
CVE Alert: CVE-2024-9118
Vulnerability Summary: CVE-2024-9118 The QS Dark Mode Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2024-44744
Vulnerability Summary: CVE-2024-44744 An issue in Malwarebytes Premium Security v5.0.0.883 allows attackers to execute arbitrary code via placing crafted binaries...
CVE Alert: CVE-2024-9405
Vulnerability Summary: CVE-2024-9405 An incorrect limitation of a path to a restricted directory (path traversal) has been detected in Pluck...
CVE Alert: CVE-2024-41276
Vulnerability Summary: CVE-2024-41276 A vulnerability in Kaiten version 57.131.12 and earlier allows attackers to bypass the PIN code authentication mechanism....
CVE Alert: CVE-2024-30132
Vulnerability Summary: CVE-2024-30132 HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could allow...
CVE Alert: CVE-2023-7273
Vulnerability Summary: CVE-2023-7273 Cross site request forgery in Kiteworks OwnCloud allows an unauthenticated attacker to forge requests. If a request...
[AKIRA] – Ransomware Victim: ETC Companies
Ransomware Group: AKIRA VICTIM NAME: ETC Companies NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
HackerOne Bug Bounty Disclosure: stored-xss-ads-tiktok-com-ahmed-xyz
Company Name: TikTok Company HackerOne URL: https://hackerone.com/tiktok Submitted By:ahmed_xyzLink to Submitters Profile:https://hackerone.com/ahmed_xyz Report Title:Stored-XSS-adstiktokcomReport Link:https://hackerone.com/reports/2306491Date Submitted:02 October 2024 A considerable...
[AKIRA] – Ransomware Victim: Holmes & Brakel
Ransomware Group: AKIRA VICTIM NAME: Holmes & Brakel NOTE: No files or stolen information are by RedPacket Security. Any legal...
[BLACKSUIT] – Ransomware Victim: Branhaven Chrysler Dodge Jeep Ram
Ransomware Group: BLACKSUIT VICTIM NAME: Branhaven Chrysler Dodge Jeep Ram NOTE: No files or stolen information are by RedPacket Security....
[QILIN] – Ransomware Victim: Forshey Prostok LLP
Ransomware Group: QILIN VICTIM NAME: Forshey Prostok LLP NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2024-41673
Vulnerability Summary: CVE-2024-41673 Decidim is a participatory democracy framework. The version control feature used in resources is subject to potential...
CVE Alert: CVE-2024-45408
Vulnerability Summary: CVE-2024-45408 eLabFTW is an open source electronic lab notebook for research labs. An incorrect permission check has been...
CVE Alert: CVE-2024-25661
Vulnerability Summary: CVE-2024-25661 In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive information in memory of the...
CVE Alert: CVE-2024-25632
Vulnerability Summary: CVE-2024-25632 eLabFTW is an open source electronic lab notebook for research labs. In the context of eLabFTW, an...
CVE Alert: CVE-2024-45967
Vulnerability Summary: CVE-2024-45967 Pagekit 1.0.18 is vulnerable to Cross Site Scripting (XSS) in index.php/admin/site/widget. Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2024-25660
Vulnerability Summary: CVE-2024-25660 The WebDAV service in Infinera TNMS (Transcend Network Management System) 19.10.3 allows a low-privileged remote attacker to...
CVE Alert: CVE-2024-47071
Vulnerability Summary: CVE-2024-47071 OSS Endpoint Manager is an endpoint manager module for FreePBX. OSS Endpoint Manager module activation can allow...
