threatintel

CVE Alert: CVE-2025-3890

May 2, 2025

Vulnerability Summary: CVE-2025-3890 The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2025-1529

May 2, 2025

Vulnerability Summary: CVE-2025-1529 The AM LottiePlayer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via uploaded lottie files in...

CVE Alert: CVE-2025-27007

May 2, 2025

Vulnerability Summary: CVE-2025-27007 Incorrect Privilege Assignment vulnerability in Brainstorm Force SureTriggers allows Privilege Escalation.This issue affects SureTriggers: from n/a through...

CVE Alert: CVE-2025-4161

May 2, 2025

Vulnerability Summary: CVE-2025-4161 A vulnerability classified as critical has been found in PCMan FTP Server up to 2.0.7. This affects...

CVE Alert: CVE-2025-3874

May 2, 2025

Vulnerability Summary: CVE-2025-3874 The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Insecure Direct Object Reference in all...

CVE Alert: CVE-2025-4163

May 2, 2025

Vulnerability Summary: CVE-2025-4163 A vulnerability, which was classified as critical, has been found in PHPGurukul Land Record System 1.0. This...

CVE Alert: CVE-2025-3889

May 2, 2025

Vulnerability Summary: CVE-2025-3889 The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Insecure Direct Object Reference in all...

CVE Alert: CVE-2023-46669

May 2, 2025

Vulnerability Summary: CVE-2023-46669 Exposure of sensitive information to local unauthorized actors in Elastic Agent and Elastic Security Endpoint can lead...

CVE Alert: CVE-2025-4164

May 2, 2025

Vulnerability Summary: CVE-2025-4164 A vulnerability, which was classified as critical, was found in PHPGurukul Employee Record Management System 1.3. Affected...

CVE Alert: CVE-2025-25016

May 2, 2025

Vulnerability Summary: CVE-2025-25016 Unrestricted file upload in Kibana allows an authenticated attacker to compromise software integrity by uploading a crafted...

CVE Alert: CVE-2024-52979

May 2, 2025

Vulnerability Summary: CVE-2024-52979 Uncontrolled Resource Consumption in Elasticsearch while evaluating specifically crafted search templates with Mustache functions can lead to...

CVE Alert: CVE-2024-11390

May 2, 2025

Vulnerability Summary: CVE-2024-11390 Unrestricted upload of a file with dangerous type in Kibana can lead to arbitrary JavaScript execution in...

CVE Alert: CVE-2024-52976

May 2, 2025

Vulnerability Summary: CVE-2024-52976 Inclusion of functionality from an untrusted control sphere in Elastic Agent subprocess, osqueryd, allows local attackers to...

CVE Alert: CVE-2024-11994

May 2, 2025

Vulnerability Summary: CVE-2024-11994 APM server logs could contain parts of the document body from a partially failed bulk index request....

CVE Alert: CVE-2025-23244

May 2, 2025

Vulnerability Summary: CVE-2025-23244 NVIDIA GPU Display Driver for Linux contains a vulnerability which could allow an unprivileged attacker to escalate...

CVE Alert: CVE-2025-4173

May 2, 2025

Vulnerability Summary: CVE-2025-4173 A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability...

CVE Alert: CVE-2025-23254

May 2, 2025

Vulnerability Summary: CVE-2025-23254 NVIDIA TensorRT-LLM for any platform contains a vulnerability in python executor where an attacker may cause a...

CVE Alert: CVE-2025-23245

May 2, 2025

Vulnerability Summary: CVE-2025-23245 NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin),...

CVE Alert: CVE-2025-23246

May 2, 2025

Vulnerability Summary: CVE-2025-23246 NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin),...

51a7c32a9ac77f5fe6ea9d752b3561b15b51030c1f5e2f0b73c826799164c91d

Btw Windows Subsystem For Linux Officially Uses Arch Now

May 2, 2025

There have been unofficial versions for years, but Arch Linux is now officially on the menu for people using Windows...

0309d00b3b2477a6fe7305df4ec9d15d2ec0f33a2bf4847693d8689bc84d9d3d

‘i Guess Nasa Doesn’t Need Or Care About My Work Anymore’

May 2, 2025

NASA has excised former Space Shuttle manager Wayne Hale's blog from its website in a reminder that nothing is forever.NASA...

[DEVMAN] – Ransomware Victim: smvthailand[.]com

May 2, 2025

Ransomware Group: DEVMAN VICTIM NAME: smvthailandcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

TehetségKapu – 54,357 breached accounts

May 2, 2025

HIBP In March 2025, almost 55k records were breached from the Hungarian education office website TehetségKapu. The data was subsequently...

[QILIN] – Ransomware Victim: cobbcounty

May 2, 2025

Ransomware Group: QILIN VICTIM NAME: cobbcounty NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

threatintel

CVE Alert: CVE-2025-3890

CVE Alert: CVE-2025-1529

CVE Alert: CVE-2025-27007

CVE Alert: CVE-2025-4161

CVE Alert: CVE-2025-3874

CVE Alert: CVE-2025-4163

CVE Alert: CVE-2025-3889

CVE Alert: CVE-2023-46669

CVE Alert: CVE-2025-4164

CVE Alert: CVE-2025-25016

CVE Alert: CVE-2024-52979

CVE Alert: CVE-2024-11390

CVE Alert: CVE-2024-52976

CVE Alert: CVE-2024-11994

CVE Alert: CVE-2025-23244

CVE Alert: CVE-2025-4173

CVE Alert: CVE-2025-23254

CVE Alert: CVE-2025-23245

CVE Alert: CVE-2025-23246

Btw Windows Subsystem For Linux Officially Uses Arch Now

‘i Guess Nasa Doesn’t Need Or Care About My Work Anymore’

[DEVMAN] – Ransomware Victim: smvthailand[.]com

TehetségKapu – 54,357 breached accounts

[QILIN] – Ransomware Victim: cobbcounty

CVE Alert: CVE-2025-20274

CVE Alert: CVE-2025-20284

CVE Alert: CVE-2025-20285

CVE Alert: CVE-2025-20337

CVE Alert: CVE-2025-20288

You may have missed