Un Says Asian Scam Call Center Epidemic Expanding Globally Amid Political Heat
Scam call centers are metastasizing worldwide "like a cancer," according to the United Nations, which warns the epidemic has reached...
threatintel
CVE Alert: CVE-2023-37516
Vulnerability Summary: CVE-2023-37516 Missing "no cache" headers in HCL Leap permits user directory information to be cached. Affected Endpoints: No...
CVE Alert: CVE-2024-30127
Vulnerability Summary: CVE-2024-30127 Missing "no cache" headers in HCL Leap permits sensitive data to be cached. Affected Endpoints: No affected...
CVE Alert: CVE-2025-46275
Vulnerability Summary: CVE-2025-46275 WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create an administrator account without...
CVE Alert: CVE-2025-43861
Vulnerability Summary: CVE-2025-43861 ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable...
CVE Alert: CVE-2025-1294
Vulnerability Summary: CVE-2025-1294 The eForm - WordPress Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all...
CVE Alert: CVE-2025-46274
Vulnerability Summary: CVE-2025-46274 UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to read, manipulate and create entries in...
CVE Alert: CVE-2025-46271
Vulnerability Summary: CVE-2025-46271 UNI-NMS-Lite is vulnerable to a command injection attack that could allow an unauthenticated attacker to read or...
CVE Alert: CVE-2025-46272
Vulnerability Summary: CVE-2025-46272 WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection attack that could allow an unauthenticated attacker to...
CVE Alert: CVE-2025-3749
Vulnerability Summary: CVE-2025-3749 The Breeze Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘cal_size’ parameter in...
CVE Alert: CVE-2025-46273
Vulnerability Summary: CVE-2025-46273 UNI-NMS-Lite uses hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS...
[LYNX] – Ransomware Victim: pay4freight[.]com
Ransomware Group: LYNX VICTIM NAME: pay4freightcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: impactcanada[.]com
Ransomware Group: LYNX VICTIM NAME: impactcanadacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: greatplainstransport[.]com
Ransomware Group: LYNX VICTIM NAME: greatplainstransportcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-10306
Vulnerability Summary: CVE-2024-10306 A vulnerability was found in mod_proxy_cluster. The issue is that the directive should be replaced by the...
CVE Alert: CVE-2025-2703
Vulnerability Summary: CVE-2025-2703 The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions...
CVE Alert: CVE-2025-45428
Vulnerability Summary: CVE-2025-45428 In Tenda ac9 v1.0 with firmware V15.03.05.14_multi, the rebootTime parameter of /goform/SetSysAutoRebbotCfg has a stack overflow vulnerability,...
CVE Alert: CVE-2025-1054
Vulnerability Summary: CVE-2025-1054 The UiCore Elements – Free Elementor widgets and templates plugin for WordPress is vulnerable to Stored Cross-Site...
CVE Alert: CVE-2025-43716
Vulnerability Summary: CVE-2025-43716 A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the...
CVE Alert: CVE-2025-45427
Vulnerability Summary: CVE-2025-45427 In Tenda AC9 v1.0 with firmware V15.03.05.14_multi, the security parameter of /goform/WifiBasicSet has a stack overflow vulnerability,...
CVE Alert: CVE-2025-46393
Vulnerability Summary: CVE-2025-46393 In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of...
CVE Alert: CVE-2024-47829
Vulnerability Summary: CVE-2024-47829 pnpm is a package manager. Prior to version 10.0.0, the path shortening function uses the md5 function...
CVE Alert: CVE-2025-43965
Vulnerability Summary: CVE-2025-43965 In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used. Affected...
CVE Alert: CVE-2025-21605
Vulnerability Summary: CVE-2025-21605 Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and...
