threatintel

CVE Alert: CVE-2025-24689

January 28, 2025

Vulnerability Summary: CVE-2025-24689 Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in codection Import and export users and...

CVE Alert: CVE-2025-24782

January 28, 2025

Vulnerability Summary: CVE-2025-24782 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in wpWax...

CVE Alert: CVE-2025-24744

January 28, 2025

Vulnerability Summary: CVE-2025-24744 Missing Authorization vulnerability in NotFound Bridge Core. This issue affects Bridge Core: from n/a through 3.3. Affected...

CVE Alert: CVE-2023-52292

January 28, 2025

Vulnerability Summary: CVE-2023-52292 IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.3 is vulnerable to stored cross-site scripting....

CVE Alert: CVE-2025-24747

January 28, 2025

Vulnerability Summary: CVE-2025-24747 Missing Authorization vulnerability in Houzez.co Houzez. This issue affects Houzez: from n/a through 3.4.0. Affected Endpoints: No...

CVE Alert: CVE-2024-38320

January 28, 2025

Vulnerability Summary: CVE-2024-38320 IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect Backup-Archive Client 8.1.0.0 through...

CVE Alert: CVE-2024-45598

January 28, 2025

Vulnerability Summary: CVE-2024-45598 Cacti is an open source performance and fault management framework. Prior to 1.2.29, an administrator can change...

CVE Alert: CVE-2024-37527

January 28, 2025

Vulnerability Summary: CVE-2024-37527 IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated...

CVE Alert: CVE-2024-22316

January 28, 2025

Vulnerability Summary: CVE-2024-22316 IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to...

CVE Alert: CVE-2023-47159

January 28, 2025

Vulnerability Summary: CVE-2023-47159 IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to...

[LYNX] – Ransomware Victim: sce[.]org[.]sg

January 28, 2025

Ransomware Group: LYNX VICTIM NAME: sceorgsg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[INCRANSOM] – Ransomware Victim: cnnindonesia[.]com

January 28, 2025

Ransomware Group: INCRANSOM VICTIM NAME: cnnindonesiacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Mercy Supply Collaborative

January 28, 2025

Ransomware Group: AKIRA VICTIM NAME: Mercy Supply Collaborative NOTE: No files or stolen information are by RedPacket Security. Any legal...

[BABUK2] – Ransomware Victim: Hello! world by ( Babuk Locker )

January 28, 2025

Ransomware Group: BABUK2 VICTIM NAME: Hello! world by ( Babuk Locker ) NOTE: No files or stolen information are by...

CVE Alert: CVE-2024-54145

January 28, 2025

Vulnerability Summary: CVE-2024-54145 Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in...

CVE Alert: CVE-2024-38325

January 28, 2025

Vulnerability Summary: CVE-2024-38325 IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI could allow a remote attacker to obtain sensitive...

CVE Alert: CVE-2024-27256

January 28, 2025

Vulnerability Summary: CVE-2024-27256 IBM MQ Container 3.0.0, 3.0.1, 3.1.0 through 3.1.3 CD, 2.0.0 LTS through 2.0.22 LTS and 2.4.0 through...

CVE Alert: CVE-2024-54146

January 28, 2025

Vulnerability Summary: CVE-2024-54146 Cacti is an open source performance and fault management framework. Cacti has a SQL injection vulnerability in...

CVE Alert: CVE-2025-0729

January 28, 2025

Vulnerability Summary: CVE-2025-0729 A vulnerability was found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. It has been rated as...

CVE Alert: CVE-2025-0732

January 28, 2025

Vulnerability Summary: CVE-2025-0732 A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows....

CVE Alert: CVE-2025-22604

January 28, 2025

Vulnerability Summary: CVE-2025-22604 Cacti is an open source performance and fault management framework. Due to a flaw in multi-line SNMP...

CVE Alert: CVE-2025-0733

January 28, 2025

Vulnerability Summary: CVE-2025-0733 A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This...

CVE Alert: CVE-2025-0730

January 28, 2025

Vulnerability Summary: CVE-2025-0730 A vulnerability classified as problematic has been found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. Affected...

CVE Alert: CVE-2024-12740

January 28, 2025

Vulnerability Summary: CVE-2024-12740 Vision related software from NI used a third-party library for image processing that exposes several vulnerabilities. These...

threatintel

CVE Alert: CVE-2025-24689

CVE Alert: CVE-2025-24782

CVE Alert: CVE-2025-24744

CVE Alert: CVE-2023-52292

CVE Alert: CVE-2025-24747

CVE Alert: CVE-2024-38320

CVE Alert: CVE-2024-45598

CVE Alert: CVE-2024-37527

CVE Alert: CVE-2024-22316

CVE Alert: CVE-2023-47159

[LYNX] – Ransomware Victim: sce[.]org[.]sg

[INCRANSOM] – Ransomware Victim: cnnindonesia[.]com

[AKIRA] – Ransomware Victim: Mercy Supply Collaborative

[BABUK2] – Ransomware Victim: Hello! world by ( Babuk Locker )

CVE Alert: CVE-2024-54145

CVE Alert: CVE-2024-38325

CVE Alert: CVE-2024-27256

CVE Alert: CVE-2024-54146

CVE Alert: CVE-2025-0729

CVE Alert: CVE-2025-0732

CVE Alert: CVE-2025-22604

CVE Alert: CVE-2025-0733

CVE Alert: CVE-2025-0730

CVE Alert: CVE-2024-12740

HackerOne Bug Bounty Disclosure: stored-xss-in-file-upload-leads-to-privilege-escalation-and-full-workspace-takeover-sjalu

HackerOne Bug Bounty Disclosure: middleware-authentication-bypass-on-ibm-portal-muhammadwaseem

[LYNX] – Ransomware Victim: runtec[.]co[.]jp

[QILIN] – Ransomware Victim: Megachem Singapore

CVE Alert: CVE-2025-3521

You may have missed