threatintel

CVE Alert: CVE-2025-2010

April 20, 2025

Vulnerability Summary: CVE-2025-2010 The JobWP – Job Board, Job Listing, Career Page and Recruitment Plugin plugin for WordPress is vulnerable...

CVE Alert: CVE-2025-3278

April 20, 2025

Vulnerability Summary: CVE-2025-3278 The UrbanGo Membership plugin for WordPress is vulnerable to privilege escalation in versions up to, and including,...

CVE Alert: CVE-2025-1093

April 20, 2025

Vulnerability Summary: CVE-2025-1093 The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation...

CVE Alert: CVE-2025-3284

April 20, 2025

Vulnerability Summary: CVE-2025-3284 The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress...

2c67d9d5ddce58f3a1060276a9e726dc9f0bb941adc3c1ea7cfa40bbb3c28e8f

Maryam – Open-source Intelligence(OSINT) Framework

April 20, 2025

OWASP Maryam is a modular open-source framework based on OSINT and data gathering. It is designed to provide a robust...

Cobalt Strike Beacon Detected – 152[.]136[.]17[.]91:9999

April 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 8[.]148[.]224[.]96:8888

April 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 43[.]133[.]72[.]43:80

April 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CVE Alert: CVE-2025-1457

April 20, 2025

Vulnerability Summary: CVE-2025-1457 The Element Pack Addons for Elementor – Free Templates and Widgets for Your WordPress Websites plugin for...

CVE Alert: CVE-2025-3275

April 20, 2025

Vulnerability Summary: CVE-2025-3275 The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TF...

CVE Alert: CVE-2025-2111

April 20, 2025

Vulnerability Summary: CVE-2025-2111 The Insert Headers And Footers plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...

CVE Alert: CVE-2025-3809

April 20, 2025

Vulnerability Summary: CVE-2025-3809 The Debug Log Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the auto-refresh debug...

CVE Alert: CVE-2025-3103

April 20, 2025

Vulnerability Summary: CVE-2025-3103 The CLEVER - HTML5 Radio Player With History - Shoutcast and Icecast - Elementor Widget Addon plugin...

CVE Alert: CVE-2025-3797

April 20, 2025

Vulnerability Summary: CVE-2025-3797 A vulnerability classified as critical was found in SeaCMS up to 13.3. This vulnerability affects unknown code...

CVE Alert: CVE-2025-3661

April 20, 2025

Vulnerability Summary: CVE-2025-3661 The SB Chart block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter...

CVE Alert: CVE-2025-3404

April 20, 2025

Vulnerability Summary: CVE-2025-3404 The Download Manager plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path...

CVE Alert: CVE-2025-3798

April 20, 2025

Vulnerability Summary: CVE-2025-3798 A vulnerability, which was classified as critical, has been found in WCMS 11. This issue affects the...

CVE Alert: CVE-2021-4455

April 20, 2025

Vulnerability Summary: CVE-2021-4455 The Wordpress Plugin Smart Product Review plugin for WordPress is vulnerable to arbitrary file uploads due to...

[MEDUSA] – Ransomware Victim: Lithium Americas Nevada

April 20, 2025

Ransomware Group: MEDUSA VICTIM NAME: Lithium Americas Nevada NOTE: No files or stolen information are by RedPacket Security. Any legal...

[DRAGONFORCE] – Ransomware Victim: Iris ID

April 20, 2025

Ransomware Group: DRAGONFORCE VICTIM NAME: Iris ID NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MEDUSA] – Ransomware Victim: MRC de Maskinongé – district

April 20, 2025

Ransomware Group: MEDUSA VICTIM NAME: MRC de Maskinongé - district NOTE: No files or stolen information are by RedPacket Security....

[DRAGONFORCE] – Ransomware Victim: City of Grove

April 20, 2025

Ransomware Group: DRAGONFORCE VICTIM NAME: City of Grove NOTE: No files or stolen information are by RedPacket Security. Any legal...

[SARCOMA] – Ransomware Victim: FAKO-M Getränke

April 20, 2025

Ransomware Group: SARCOMA VICTIM NAME: FAKO-M Getränke NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2025-3800

April 20, 2025

Vulnerability Summary: CVE-2025-3800 A vulnerability has been found in WCMS 11 and classified as critical. Affected by this vulnerability is...

threatintel

CVE Alert: CVE-2025-2010

CVE Alert: CVE-2025-3278

CVE Alert: CVE-2025-1093

CVE Alert: CVE-2025-3284

Maryam – Open-source Intelligence(OSINT) Framework

Cobalt Strike Beacon Detected – 152[.]136[.]17[.]91:9999

Cobalt Strike Beacon Detected – 8[.]148[.]224[.]96:8888

Cobalt Strike Beacon Detected – 43[.]133[.]72[.]43:80

CVE Alert: CVE-2025-1457

CVE Alert: CVE-2025-3275

CVE Alert: CVE-2025-2111

CVE Alert: CVE-2025-3809

CVE Alert: CVE-2025-3103

CVE Alert: CVE-2025-3797

CVE Alert: CVE-2025-3661

CVE Alert: CVE-2025-3404

CVE Alert: CVE-2025-3798

CVE Alert: CVE-2021-4455

[MEDUSA] – Ransomware Victim: Lithium Americas Nevada

[DRAGONFORCE] – Ransomware Victim: Iris ID

[MEDUSA] – Ransomware Victim: MRC de Maskinongé – district

[DRAGONFORCE] – Ransomware Victim: City of Grove

[SARCOMA] – Ransomware Victim: FAKO-M Getränke

CVE Alert: CVE-2025-3800

Cobalt Strike Beacon Detected – 121[.]43[.]37[.]134:4434

Cobalt Strike Beacon Detected – 119[.]29[.]231[.]118:443

Cobalt Strike Beacon Detected – 39[.]101[.]74[.]162:443

Cobalt Strike Beacon Detected – 8[.]218[.]112[.]112:8880

Cobalt Strike Beacon Detected – 47[.]109[.]48[.]57:443

You may have missed