CVE Alert: CVE-2025-3223
Vulnerability Summary: CVE-2025-3223 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in GE Vernova WorkstationST on...
OSINT
CVE Alert: CVE-2025-47946
Vulnerability Summary: CVE-2025-47946 Symfony UX is an initiative and set of libraries to integrate JavaScript tools into applications. Prior to...
CVE Alert: CVE-2025-48340
Vulnerability Summary: CVE-2025-48340 Cross-Site Request Forgery (CSRF) vulnerability in Danny Vink User Profile Meta Manager allows Privilege Escalation.This issue affects...
CVE Alert: CVE-2025-39393
Vulnerability Summary: CVE-2025-39393 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mojoomla Hospital Management System allows...
CVE Alert: CVE-2025-47944
Vulnerability Summary: CVE-2025-47944 Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability that is present starting in version 1.4.4-lts.1...
[IMNCREW] – Ransomware Victim: Stiga[.]com
Ransomware Group: IMNCREW VICTIM NAME: Stigacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[KILLSEC] – Ransomware Victim: Medswana
Ransomware Group: KILLSEC VICTIM NAME: Medswana NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[WORLDLEAKS] – Ransomware Victim: Indigo Group S[.]A[.]
Ransomware Group: WORLDLEAKS VICTIM NAME: Indigo Group SA NOTE: No files or stolen information are by RedPacket Security. Any legal...
Cobalt Strike Beacon Detected – 111[.]229[.]0[.]18:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 156[.]238[.]224[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-4863
Vulnerability Summary: CVE-2025-4863 A vulnerability, which was classified as critical, was found in Advaya Softech GEMS ERP Portal 2.1. This...
CVE Alert: CVE-2025-4861
Vulnerability Summary: CVE-2025-4861 A vulnerability classified as critical was found in PHPGurukul Beauty Parlour Management System 1.1. Affected by this...
CVE Alert: CVE-2025-4865
Vulnerability Summary: CVE-2025-4865 A vulnerability was found in itsourcecode Restaurant Management System 1.0 and classified as critical. This issue affects...
CVE Alert: CVE-2025-4864
Vulnerability Summary: CVE-2025-4864 A vulnerability has been found in itsourcecode Restaurant Management System 1.0 and classified as critical. This vulnerability...
CVE Alert: CVE-2025-4866
Vulnerability Summary: CVE-2025-4866 A vulnerability was found in weibocom rill-flow 0.1.18. It has been classified as critical. Affected is an...
CVE Alert: CVE-2025-4869
Vulnerability Summary: CVE-2025-4869 A vulnerability classified as critical has been found in itsourcecode Restaurant Management System 1.0. This affects an...
CVE Alert: CVE-2025-4867
Vulnerability Summary: CVE-2025-4867 A vulnerability was found in Tenda A15 15.13.07.13. It has been declared as problematic. Affected by this...
CVE Alert: CVE-2025-4868
Vulnerability Summary: CVE-2025-4868 A vulnerability was found in merikbest ecommerce-spring-reactjs up to 464e610bb11cc2619cf6ce8212ccc2d1fd4277fd. It has been rated as critical. Affected...
CVE Alert: CVE-2025-4870
Vulnerability Summary: CVE-2025-4870 A vulnerability classified as critical was found in itsourcecode Restaurant Management System 1.0. This vulnerability affects unknown...
CVE Alert: CVE-2025-4871
Vulnerability Summary: CVE-2025-4871 A vulnerability, which was classified as critical, has been found in PCMan FTP Server 2.0.7. This issue...
[PLAY] – Ransomware Victim: K & K Fence
Ransomware Group: PLAY VICTIM NAME: K & K Fence NOTE: No files or stolen information are by RedPacket Security. Any...
BugCrowd Bug Bounty Disclosure: P5 – Host Header Injection on Password-Reset Functionality Causes Unauthorized Redirect to Attacker-Controlled Domain Where a Users Could be Tricked into Entering Account Credentials for Account Takeover or PII Leak – Imshadab18
Host Header Injection on Password-Reset Functionality Causes Unauthorized Redirect to Attacker-Controlled Domain Where a Users Could be Tricked into Entering...
CVE Alert: CVE-2025-4880
Vulnerability Summary: CVE-2025-4880 A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this...
CVE Alert: CVE-2025-4872
Vulnerability Summary: CVE-2025-4872 A vulnerability, which was classified as critical, was found in FreeFloat FTP Server 1.0. Affected is an...
