Cobalt Strike Beacon Detected – 101[.]35[.]95[.]220:18062
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
Cobalt Strike Beacon Detected – 121[.]41[.]91[.]64:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-50460
Vulnerability Summary: CVE-2025-50460 A remote code execution (RCE) vulnerability exists in the ms-swift project version 3.3.0 due to unsafe deserialization...
CVE Alert: CVE-2025-46018
Vulnerability Summary: CVE-2025-46018 CSC Pay Mobile App 2.19.4 (fixed in version 2.20.0) contains a vulnerability allowing users to bypass payment...
CVE Alert: CVE-2025-50472
Vulnerability Summary: CVE-2025-50472 The modelscope/ms-swift library thru 2.6.1 is vulnerable to arbitrary code execution through deserialization of untrusted data within...
CVE Alert: CVE-2023-44976
Vulnerability Summary: CVE-2023-44976 Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other...
CVE Alert: CVE-2025-45767
Vulnerability Summary: CVE-2025-45767 jose v6.0.10 was discovered to contain weak encryption. Affected Endpoints: No affected endpoints listed. Published Date: 8/1/2025,...
CVE Alert: CVE-2025-51504
Vulnerability Summary: CVE-2025-51504 Microweber CMS 2.0 is vulnerable to Cross Site Scripting (XSS)in the /projects/profile, homepage endpoint via the last...
CVE Alert: CVE-2025-51502
Vulnerability Summary: CVE-2025-51502 Reflected Cross-Site Scripting (XSS) in Microweber CMS 2.0 via the layout parameter on the /admin/page/create page allows...
CVE Alert: CVE-2025-45150
Vulnerability Summary: CVE-2025-45150 Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive files via supplying...
CVE Alert: CVE-2025-51501
Vulnerability Summary: CVE-2025-51501 Reflected Cross-Site Scripting (XSS) in the id parameter of the live_edit.module_settings API endpoint in Microweber CMS2.0 allows...
CVE Alert: CVE-2025-52390
Vulnerability Summary: CVE-2025-52390 Saurus CMS Community Edition since commit d886e5b0 (2010-04-23) is vulnerable to a SQL Injection vulnerability in the...
[IMNCREW] – Ransomware Victim: Onegolditalia[.]it
Ransomware Group: IMNCREW VICTIM NAME: Onegolditaliait NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-2824
Vulnerability Summary: CVE-2025-2824 IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, 9.0.0.1, and 9.5.0 could allow a remote attacker to conduct...
CVE Alert: CVE-2025-33118
Vulnerability Summary: CVE-2025-33118 IBM QRadar SIEM 7.5 through 7.5.0 Update Pack 12 is vulnerable to stored cross-site scripting. This vulnerability...
CVE Alert: CVE-2025-45778
Vulnerability Summary: CVE-2025-45778 A stored cross-site scripting (XSS) vulnerability in The Language Sloth Web Application v1.0 allows attackers to execute...
CVE Alert: CVE-2025-49832
Vulnerability Summary: CVE-2025-49832 Asterisk is an open source private branch exchange and telephony toolkit. In versions up to and including...
CVE Alert: CVE-2023-32256
Vulnerability Summary: CVE-2023-32256 A flaw was found in the Linux kernel's ksmbd component. A race condition between smb2 close operation...
CVE Alert: CVE-2025-50868
Vulnerability Summary: CVE-2025-50868 A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP-Project 1.0. The Q4 POST parameter is...
CVE Alert: CVE-2025-50870
Vulnerability Summary: CVE-2025-50870 Institute-of-Current-Students 1.0 is vulnerable to Incorrect Access Control in the mydetailsstudent.php endpoint. The myds GET parameter accepts...
CVE Alert: CVE-2025-50869
Vulnerability Summary: CVE-2025-50869 A stored Cross-Site Scripting (XSS) vulnerability exists in the qureydetails.php page of Institute-of-Current-Students 1.0, where the input...
CVE Alert: CVE-2025-54593
Vulnerability Summary: CVE-2025-54593 FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.1 and below, an authenticated administrator user can...
CVE Alert: CVE-2025-54595
Vulnerability Summary: CVE-2025-54595 Pearcleaner is a free, source-available and fair-code licensed mac app cleaner. The PearcleanerHelper is a privileged helper...
[LYNX] – Ransomware Victim: www[.]pefco[.]com
Ransomware Group: LYNX VICTIM NAME: wwwpefcocom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
