CVE Alert: CVE-2025-3867
Vulnerability Summary: CVE-2025-3867 The Ajax Comment Form CST plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
threatintel
CVE Alert: CVE-2025-3866
Vulnerability Summary: CVE-2025-3866 The Add Google +1 (Plus one) social share Button plugin for WordPress is vulnerable to Cross-Site Request...
CVE Alert: CVE-2025-3868
Vulnerability Summary: CVE-2025-3868 The Custom Admin-Bar Favorites plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'menuObject' parameter...
CVE Alert: CVE-2025-46616
Vulnerability Summary: CVE-2025-46616 Quantum StorNext Web GUI API before 7.2.4 allows potential Arbitrary Remote Code Execution (RCE) via upload of...
CVE Alert: CVE-2025-46617
Vulnerability Summary: CVE-2025-46617 Quantum StorNext Web GUI API before 7.2.4 grants access to internal StorNext configuration and unauthorized modification of...
CVE Alert: CVE-2025-3870
Vulnerability Summary: CVE-2025-3870 The 1 Decembrie 1918 plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up...
CVE Alert: CVE-2025-1279
Vulnerability Summary: CVE-2025-1279 The BM Content Builder plugin for WordPress is vulnerable to unauthorized modification of data that can lead...
CVE Alert: CVE-2025-46535
Vulnerability Summary: CVE-2025-46535 Missing Authorization vulnerability in AlphaEfficiencyTeam Custom Login and Registration allows Exploiting Incorrectly Configured Access Control Security Levels.This...
CVE Alert: CVE-2025-1565
Vulnerability Summary: CVE-2025-1565 The Mayosis Core plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to,...
CVE Alert: CVE-2025-46482
Vulnerability Summary: CVE-2025-46482 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MyThemeShop WP Quiz allows Stored...
Cobalt Strike Beacon Detected – 54[.]244[.]226[.]5:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 103[.]214[.]172[.]10:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 202[.]144[.]192[.]24:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 116[.]204[.]159[.]29:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 59[.]110[.]233[.]152:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 120[.]46[.]217[.]53:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 111[.]230[.]244[.]189:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CovenantC2 Detected – 116[.]2[.]190[.]93:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2025-2986
Vulnerability Summary: CVE-2025-2986 IBM Maximo Asset Management 7.6.1.3 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user...
CVE Alert: CVE-2024-11917
Vulnerability Summary: CVE-2024-11917 The JobSearch WP Job Board plugin for WordPress is vulnerable to authentication bypass in all versions up...
CVE Alert: CVE-2024-57375
Vulnerability Summary: CVE-2024-57375 Andamiro Pump It Up 20th Anniversary (aka Double X or XX/2019) 1.00.0-2.08.3 allows a physically proximate attacker...
CVE Alert: CVE-2025-3912
Vulnerability Summary: CVE-2025-3912 The WS Form LITE – Drag & Drop Contact Form Builder for WordPress plugin for WordPress is...
CVE Alert: CVE-2025-2470
Vulnerability Summary: CVE-2025-2470 The Service Finder Bookings plugin for WordPress, used by the Service Finder - Directory and Job Board...
CVE Alert: CVE-2025-3625
Vulnerability Summary: CVE-2025-3625 A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information...
