CVE Alert: CVE-2024-55072
Vulnerability Summary: CVE-2024-55072 A Broken Object Level Authorization vulnerability in the component /api/users/{user-id} of hay-kot mealie v2.2.0 allows users to...
OSINT
CVE Alert: CVE-2023-38272
Vulnerability Summary: CVE-2023-38272 IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7...
CVE Alert: CVE-2025-22740
Vulnerability Summary: CVE-2025-22740 Missing Authorization vulnerability in Automattic Sensei LMS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects...
CVE Alert: CVE-2024-55073
Vulnerability Summary: CVE-2024-55073 A Broken Object Level Authorization vulnerability in the component /api/users/{user-id} of hay-kot mealie v2.2.0 allows users to...
CVE Alert: CVE-2025-26890
Vulnerability Summary: CVE-2025-26890 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in PluginUs.Net...
CVE Alert: CVE-2025-26874
Vulnerability Summary: CVE-2025-26874 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MemberSpace allows Reflected XSS.This issue...
CVE Alert: CVE-2025-26898
Vulnerability Summary: CVE-2025-26898 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Shinetheme Traveler.This issue...
CVE Alert: CVE-2025-22739
Vulnerability Summary: CVE-2025-22739 Missing Authorization vulnerability in ThimPress LearnPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LearnPress:...
CVE Alert: CVE-2025-26956
Vulnerability Summary: CVE-2025-26956 Missing Authorization vulnerability in Shinetheme Traveler.This issue affects Traveler: from n/a through 3.1.8. Affected Endpoints: No affected...
CVE Alert: CVE-2025-31031
Vulnerability Summary: CVE-2025-31031 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Astoundify Job Colors for WP...
CVE Alert: CVE-2025-26873
Vulnerability Summary: CVE-2025-26873 Deserialization of Untrusted Data vulnerability in Shinetheme Traveler.This issue affects Traveler: from n/a through 3.1.8. Affected Endpoints:...
CVE Alert: CVE-2025-2878
Vulnerability Summary: CVE-2025-2878 A vulnerability was found in Kentico CMS up to 13.0.178. It has been declared as problematic. Affected...
CVE Alert: CVE-2025-31101
Vulnerability Summary: CVE-2025-31101 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vault Group Pty Ltd VaultRE...
CVE Alert: CVE-2025-26733
Vulnerability Summary: CVE-2025-26733 Missing Authorization vulnerability in Shinetheme Traveler.This issue affects Traveler: from n/a through 3.1.8. Affected Endpoints: No affected...
Cobalt Strike Beacon Detected – 62[.]234[.]27[.]146:3306
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 139[.]9[.]135[.]76:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 148[.]66[.]2[.]198:8083
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-28911
Vulnerability Summary: CVE-2025-28911 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gravity2pdf Gravity 2 PDF allows...
CVE Alert: CVE-2025-28899
Vulnerability Summary: CVE-2025-28899 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Event Ticketing allows...
CVE Alert: CVE-2025-28917
Vulnerability Summary: CVE-2025-28917 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Custom Smilies allows Stored...
CVE Alert: CVE-2025-28916
Vulnerability Summary: CVE-2025-28916 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in NotFound...
CVE Alert: CVE-2025-28903
Vulnerability Summary: CVE-2025-28903 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Driving Directions allows Reflected...
CVE Alert: CVE-2025-28935
Vulnerability Summary: CVE-2025-28935 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in puzich Fancybox Plus allows Reflected...
CVE Alert: CVE-2025-28898
Vulnerability Summary: CVE-2025-28898 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Multistore...
