CVE

IBM QRadar Suite information disclosure | CVE-2024-22355

March 4, 2024

NAME__________IBM QRadar Suite information disclosurePlatforms Affected:IBM Cloud Pak for Security 1.10.0.0 IBM Cloud Pak for Security 1.10.11.0 IBM QRadar Suite...

Sirv plugin for WordPress server-side request forgery | CVE-2024-27949

March 4, 2024

NAME__________Sirv plugin for WordPress server-side request forgeryPlatforms Affected:WordPress WordPress WordPress Sirv Plugin for WordPress 7.2.0Risk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Sirv plugin for...

CodeAstro Membership Management System file upload | CVE-2024-25869

March 3, 2024

NAME__________CodeAstro Membership Management System file uploadPlatforms Affected:CodeAstro Membership Management System 1.0Risk Level:5.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________CodeAstro Membership Management System could allow a...

CodeAstro Membership Management System SQL injection | CVE-2024-25867

March 3, 2024

NAME__________CodeAstro Membership Management System SQL injectionPlatforms Affected:CodeAstro Membership Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________CodeAstro Membership Management System is vulnerable to...

IBM MQ denial of service | CVE-2024-25016

March 3, 2024

NAME__________IBM MQ denial of servicePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________IBM MQ and IBM MQ Appliance 9.0, 9.1, 9.2, 9.3 LTS...

Nagios XI SQL injection | CVE-2024-24401

March 2, 2024

NAME__________Nagios XI SQL injectionPlatforms Affected:Nagios Nagios XI 2024R1.01Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Nagios XI is vulnerable to SQL injection. A remote attacker...

D-Link DIR-823G denial of service | CVE-2024-27657

March 2, 2024

NAME__________D-Link DIR-823G denial of servicePlatforms Affected:D-Link DIR-823G 1.0.2B05Risk Level:5.3Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________D-Link DIR-823G is vulnerable to a denial...

Suricata denial of service | CVE-2024-23839

March 2, 2024

NAME__________Suricata denial of servicePlatforms Affected:Open Information Security Foundation Suricata 7.0.0 Open Information Security Foundation Suricata 7.0.2Risk Level:7.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Suricata...

Field Logic DataCube3 cross-site scripting | CVE-2024-25831

March 2, 2024

NAME__________Field Logic DataCube3 cross-site scriptingPlatforms Affected:Field Logic DataCube3 1.0Risk Level:5.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Field Logic DataCube3 is vulnerable to cross-site scripting, caused...

Field Logic DataCube3 file upload | CVE-2024-25832

March 2, 2024

NAME__________Field Logic DataCube3 file uploadPlatforms Affected:Field Logic DataCube3 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Field Logic DataCube3 could allow a remote authenticated attacker...

Suricata denial of service | CVE-2024-23836

March 2, 2024

NAME__________Suricata denial of servicePlatforms Affected:Open Information Security Foundation Suricata 7.0.0 Open Information Security Foundation Suricata 7.0.2Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Suricata...

LibHTP denial of service | CVE-2024-23837

March 2, 2024

NAME__________LibHTP denial of servicePlatforms Affected:Open Information Security Foundation LibHTP 0.5.45Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________LibHTP is vulnerable to a denial of...

Suricata denial of service | CVE-2024-23835

March 2, 2024

NAME__________Suricata denial of servicePlatforms Affected:Open Information Security Foundation Suricata 7.0.0 Open Information Security Foundation Suricata 7.0.2Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Suricata...

Field Logic DataCube3 information disclosure | CVE-2024-25830

March 2, 2024

NAME__________Field Logic DataCube3 information disclosurePlatforms Affected:Field Logic DataCube3 1.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Field Logic DataCube3 could allow a remote attacker to...

Account Manager module for PrestaShop directory traversal | CVE-2024-25840

March 2, 2024

NAME__________Account Manager module for PrestaShop directory traversalPlatforms Affected:PrestaShop PrestaShop PrestaShop Account Manager module for PrestaShop 8.0.0 PrestaShop Account Manager module...

Nagios XI privilege escalation | CVE-2024-24402

March 2, 2024

NAME__________Nagios XI privilege escalationPlatforms Affected:Risk Level:4.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Nagios XI could allow a remote authenticated attacker to gain elevated privileges on...

D-Link DIR-823G denial of service | CVE-2024-27658

March 2, 2024

D-Link DIR-823G denial of service | CVE-2024-27656

March 2, 2024

D-Link DIR-823G denial of service | CVE-2024-27661

March 2, 2024

D-Link DIR-823G denial of service | CVE-2024-27655

March 2, 2024

Docassemble open redirect | CVE-2024-27291

March 2, 2024

NAME__________Docassemble open redirectPlatforms Affected:Jonathan Pyle Docassemble 1.4.53 Jonathan Pyle Docassemble 1.4.96Risk Level:6.1Exploitability:UnprovenConsequences:Other DESCRIPTION__________Docassemble could allow a remote attacker to conduct...

Docassemble information disclosure | CVE-2024-27292

March 2, 2024

NAME__________Docassemble information disclosurePlatforms Affected:Jonathan Pyle Docassemble 1.4.53 Jonathan Pyle Docassemble 1.4.96Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Docassemble could allow a remote attacker to...

D-Link DIR-823G denial of service | CVE-2024-27662

March 2, 2024

Docassemble cross-site scripting | CVE-2024-27290

March 2, 2024

NAME__________Docassemble cross-site scriptingPlatforms Affected:Jonathan Pyle Docassemble 1.4.53 Jonathan Pyle Docassemble 1.4.96Risk Level:6.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Docassemble is vulnerable to cross-site scripting, caused...

CVE

IBM QRadar Suite information disclosure | CVE-2024-22355

Sirv plugin for WordPress server-side request forgery | CVE-2024-27949

CodeAstro Membership Management System file upload | CVE-2024-25869

CodeAstro Membership Management System SQL injection | CVE-2024-25867

IBM MQ denial of service | CVE-2024-25016

Nagios XI SQL injection | CVE-2024-24401

D-Link DIR-823G denial of service | CVE-2024-27657

Suricata denial of service | CVE-2024-23839

Field Logic DataCube3 cross-site scripting | CVE-2024-25831

Field Logic DataCube3 file upload | CVE-2024-25832

Suricata denial of service | CVE-2024-23836

LibHTP denial of service | CVE-2024-23837

Suricata denial of service | CVE-2024-23835

Field Logic DataCube3 information disclosure | CVE-2024-25830

Account Manager module for PrestaShop directory traversal | CVE-2024-25840

Nagios XI privilege escalation | CVE-2024-24402

D-Link DIR-823G denial of service | CVE-2024-27658

D-Link DIR-823G denial of service | CVE-2024-27656

D-Link DIR-823G denial of service | CVE-2024-27661

D-Link DIR-823G denial of service | CVE-2024-27655

Docassemble open redirect | CVE-2024-27291

Docassemble information disclosure | CVE-2024-27292

D-Link DIR-823G denial of service | CVE-2024-27662

Docassemble cross-site scripting | CVE-2024-27290

Security Awareness Training that Works for Changing Employee Behavior

Security Awareness Training that Works for Changing Employee Behavior

FreeOnes – 960,213 breached accounts

Cobalt Strike Beacon Detected – 47[.]120[.]32[.]72:8081

Cobalt Strike Beacon Detected – 8[.]147[.]128[.]54:443

Cobalt Strike Beacon Detected – 43[.]100[.]27[.]141:8443

You may have missed

Security Awareness Training that Works for Changing Employee Behavior