threatintel

CVE Alert: CVE-2025-0866

February 21, 2025

Vulnerability Summary: CVE-2025-0866 The Legoeso PDF Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘checkedVals’ parameter...

CVE Alert: CVE-2024-13802

February 21, 2025

Vulnerability Summary: CVE-2024-13802 The Bandsintown Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bandsintown_events' shortcode...

CVE Alert: CVE-2024-6432

February 21, 2025

Vulnerability Summary: CVE-2024-6432 The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2024-13855

February 21, 2025

Vulnerability Summary: CVE-2024-13855 The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all...

CVE Alert: CVE-2024-49779

February 21, 2025

Vulnerability Summary: CVE-2024-49779 IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages could allow a remote attacker to bypass security...

CVE Alert: CVE-2025-1328

February 21, 2025

Vulnerability Summary: CVE-2025-1328 The Typed JS: A typewriter style animation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...

CVE Alert: CVE-2024-49337

February 21, 2025

Vulnerability Summary: CVE-2024-49337 IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages is vulnerable to HTML injection, caused by improper...

CVE Alert: CVE-2024-49781

February 21, 2025

Vulnerability Summary: CVE-2024-49781 IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages is vulnerable to an XML external entity injection...

CVE Alert: CVE-2025-1483

February 21, 2025

Vulnerability Summary: CVE-2025-1483 The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data...

[LYNX] – Ransomware Victim: planetone-asia[.]com

February 21, 2025

Ransomware Group: LYNX VICTIM NAME: planetone-asiacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[INTERLOCK] – Ransomware Victim: Siegel Group

February 21, 2025

Ransomware Group: INTERLOCK VICTIM NAME: Siegel Group NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Luminus Management

February 21, 2025

Ransomware Group: AKIRA VICTIM NAME: Luminus Management NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

Palo Alto Networks Security Advisories /CVE-2025-0110CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability in OpenConfig PluginUrgencyMODERATE047910Severity7.3 ·HIGHExploit MaturityPOCResponse EffortMODERATERecoveryUSERValue DensityCONCENTRATEDAttack VectorNETWORKAttack...

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

Vulnerabilities

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

February 21, 2025

threatintel

CVE Alert: CVE-2025-0866

CVE Alert: CVE-2024-13802

CVE Alert: CVE-2024-6432

CVE Alert: CVE-2024-13855

CVE Alert: CVE-2024-49779

CVE Alert: CVE-2025-1328

CVE Alert: CVE-2024-49337

CVE Alert: CVE-2024-49781

CVE Alert: CVE-2025-1483

[LYNX] – Ransomware Victim: planetone-asia[.]com

[INTERLOCK] – Ransomware Victim: Siegel Group

[AKIRA] – Ransomware Victim: Luminus Management

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

[Palo Alto Networks Security Advisories] CVE-2025-0110 PAN-OS OpenConfig Plugin: Command Injection Vulnerability inOpenConfig Plugin

[RANSOMHUB] – Ransomware Victim: headcount[.]com

[INCRANSOM] – Ransomware Victim: statesideseattle[.]com

[AKIRA] – Ransomware Victim: Barhite & Holzinger Inc[.]

[RANSOMHUB] – Ransomware Victim: jindalgroup[.]com

[AKIRA] – Ransomware Victim: Paratus

[RANSOMHUB] – Ransomware Victim: guadeloupeformation[.]com

[AKIRA] – Ransomware Victim: Insyst GmbH

CVE Alert: CVE-2025-1043

[QILIN] – Ransomware Victim: www[.]kerrvilleisd[.]net

CVE Alert: CVE-2025-47079

CVE Alert: CVE-2025-47081

CVE Alert: CVE-2025-47077

CVE Alert: CVE-2025-47080

You may have missed