CVE Alert: CVE-2025-1763
Vulnerability Summary: CVE-2025-1763 An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy...
OSINT
CVE Alert: CVE-2025-4944
Vulnerability Summary: CVE-2025-4944 The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
CVE Alert: CVE-2025-5235
Vulnerability Summary: CVE-2025-5235 The OpenSheetMusicDisplay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter in all...
CVE Alert: CVE-2025-5142
Vulnerability Summary: CVE-2025-5142 The Simple Page Access Restriction plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
CVE Alert: CVE-2025-4433
Vulnerability Summary: CVE-2025-4433 Improper access control in user group management in Devolutions Server 2025.1.7.0 and earlier allows a non-administrative user...
CVE Alert: CVE-2025-1484
Vulnerability Summary: CVE-2025-1484 A vulnerability exists in the media upload component of the Asset Suite versions listed below. If successfully...
CVE Alert: CVE-2025-40909
Vulnerability Summary: CVE-2025-40909 Perl threads have a working directory race condition where file operations may target unintended paths. If a...
CVE Alert: CVE-2025-2500
Vulnerability Summary: CVE-2025-2500 A vulnerability exists in the SOAP Web services of the Asset Suite versions listed below. If successfully...
CVE Alert: CVE-2025-5190
Vulnerability Summary: CVE-2025-5190 The Browse As plugin for WordPress is vulnerable to authentication bypass in versions up to, and including,...
[SAFEPAY] – Ransomware Victim: universityacademy[.]org
Ransomware Group: SAFEPAY VICTIM NAME: universityacademyorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CovenantC2 Detected – 150[.]241[.]69[.]126:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2025-2571
Vulnerability Summary: CVE-2025-2571 Mattermost versions 10.7.x
CVE Alert: CVE-2025-48331
Vulnerability Summary: CVE-2025-48331 Insertion of Sensitive Information Into Sent Data vulnerability in Vanquish WooCommerce Orders & Customers Exporter allows Retrieve...
CVE Alert: CVE-2025-0602
Vulnerability Summary: CVE-2025-0602 A stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through...
CVE Alert: CVE-2025-4598
Vulnerability Summary: CVE-2025-4598 A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to...
CVE Alert: CVE-2025-1792
Vulnerability Summary: CVE-2025-1792 Mattermost versions 10.7.x
CVE Alert: CVE-2024-7096
Vulnerability Summary: CVE-2024-7096 A privilege escalation vulnerability exists in multiple products due to a business logic flaw in SOAP admin...
CVE Alert: CVE-2025-3611
Vulnerability Summary: CVE-2025-3611 Mattermost versions 10.7.x
CVE Alert: CVE-2025-4983
Vulnerability Summary: CVE-2025-4983 A stored Cross-site Scripting (XSS) vulnerability affecting City Referential in City Referential Manager on Release 3DEXPERIENCE R2025x...
CVE Alert: CVE-2025-4984
Vulnerability Summary: CVE-2025-4984 A stored Cross-site Scripting (XSS) vulnerability affecting City Discover in City Referential Manager on Release 3DEXPERIENCE R2025x...
CVE Alert: CVE-2024-7097
Vulnerability Summary: CVE-2024-7097 An incorrect authorization vulnerability exists in multiple WSO2 products due to a flaw in the SOAP admin...
[DEVMAN] – Ransomware Victim: lantro[.]com
Ransomware Group: DEVMAN VICTIM NAME: lantrocom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: radicon
Ransomware Group: QILIN VICTIM NAME: radicon NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[STORMOUS] – Ransomware Victim: Volkswagen Group
Ransomware Group: STORMOUS VICTIM NAME: Volkswagen Group NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
