Cobalt Strike Beacon Detected – 124[.]222[.]129[.]148:10000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Strike Beacon Detected – 103[.]12[.]149[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-29932
Vulnerability Summary: CVE-2025-29932 In JetBrains GoLand before 2025.1 an XXE during debugging was possible Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2025-22230
Vulnerability Summary: CVE-2025-22230 VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control. A malicious actor...
CVE Alert: CVE-2025-27633
Vulnerability Summary: CVE-2025-27633 The TRMTracker web application is vulnerable to reflected Cross-site scripting attack. The application allows client-side code injection...
CVE Alert: CVE-2025-27632
Vulnerability Summary: CVE-2025-27632 A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header...
CVE Alert: CVE-2024-42533
Vulnerability Summary: CVE-2024-42533 SQL injection vulnerability in the authentication module in Convivance StandVoice 4.5 through 6.2 allows remote attackers to...
CVE Alert: CVE-2025-2531
Vulnerability Summary: CVE-2025-2531 Luxion KeyShot DAE File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2025-27147
Vulnerability Summary: CVE-2025-27147 The GLPI Inventory Plugin handles various types of tasks for GLPI agents, including network discovery and inventory...
CVE Alert: CVE-2025-26742
Vulnerability Summary: CVE-2025-26742 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GhozyLab Gallery for Social Photo...
CVE Alert: CVE-2025-29635
Vulnerability Summary: CVE-2025-29635 A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execute arbitrary...
CVE Alert: CVE-2025-2532
Vulnerability Summary: CVE-2025-2532 Luxion KeyShot USDC File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...
CVE Alert: CVE-2024-58105
Vulnerability Summary: CVE-2024-58105 A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a...
CVE Alert: CVE-2025-2530
Vulnerability Summary: CVE-2025-2530 Luxion KeyShot DAE File Parsing Access of Uninitialized Pointer Remote Code Execution Vulnerability. This vulnerability allows remote...
CVE Alert: CVE-2024-58104
Vulnerability Summary: CVE-2024-58104 A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a...
CVE Alert: CVE-2024-31896
Vulnerability Summary: CVE-2024-31896 IBM SPSS Statistics 26.0, 27.0.1, 28.0.1, and 29.0.2 uses weaker than expected cryptographic algorithms that could allow...
CVE Alert: CVE-2025-2312
Vulnerability Summary: CVE-2025-2312 A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the...
CVE Alert: CVE-2025-28904
Vulnerability Summary: CVE-2025-28904 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Shamalli Web Directory...
CVE Alert: CVE-2025-30741
Vulnerability Summary: CVE-2025-30741 Pixelfed before 0.12.5 allows anyone to follow private accounts and see private posts on other Fediverse servers....
CVE Alert: CVE-2025-30567
Vulnerability Summary: CVE-2025-30567 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in wp01ru WP01 allows Path...
CVE Alert: CVE-2025-30219
Vulnerability Summary: CVE-2025-30219 RabbitMQ is a messaging and streaming broker. Versions prior to 4.0.3 are vulnerable to a sophisticated attack...
CVE Alert: CVE-2025-30216
Vulnerability Summary: CVE-2025-30216 CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP)...
Troy Hunt’s Mailchimp List – 16,627 breached accounts
HIBP In March 2025, a phishing attack successfully gained access to Troy Hunt's Mailchimp account and automatically exported a list...
Brute Ratel C4 Detected – 93[.]71[.]143[.]16:9002
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
