CVE Alert: CVE-2024-13525
Vulnerability Summary: CVE-2024-13525 The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
threatintel
CVE Alert: CVE-2025-1302
Vulnerability Summary: CVE-2025-1302 Versions of the package jsonpath-plus before 10.3.0 are vulnerable to Remote Code Execution (RCE) due to improper...
CVE Alert: CVE-2025-26819
Vulnerability Summary: CVE-2025-26819 Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections. Affected Endpoints: No...
CVE Alert: CVE-2024-13563
Vulnerability Summary: CVE-2024-13563 The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's forgot-password...
[FOG] – Ransomware Victim: Gitlabs: Acqua development, QBurst, Pamyra[.]de
Ransomware Group: FOG VICTIM NAME: Gitlabs: Acqua development, QBurst, Pamyrade NOTE: No files or stolen information are by RedPacket Security....
CVE Alert: CVE-2024-13752
Vulnerability Summary: CVE-2024-13752 The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts...
CVE Alert: CVE-2025-0935
Vulnerability Summary: CVE-2025-0935 The Media Library Folders plugin for WordPress is vulnerable to unauthorized plugin settings change due to a...
CVE Alert: CVE-2024-12562
Vulnerability Summary: CVE-2024-12562 The s2Member Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to,...
CVE Alert: CVE-2025-1005
Vulnerability Summary: CVE-2025-1005 The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image...
CVE Alert: CVE-2024-10581
Vulnerability Summary: CVE-2024-10581 The DirectoryPress Frontend plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,...
CVE Alert: CVE-2024-13488
Vulnerability Summary: CVE-2024-13488 The LTL Freight Quotes – Estes Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2024-13834
Vulnerability Summary: CVE-2024-13834 The Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme plugin for WordPress...
CVE Alert: CVE-2024-13439
Vulnerability Summary: CVE-2024-13439 The Team – Team Members Showcase Plugin plugin for WordPress is vulnerable to unauthorized access due to...
CVE Alert: CVE-2024-13500
Vulnerability Summary: CVE-2024-13500 The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts...
CVE Alert: CVE-2025-0822
Vulnerability Summary: CVE-2025-0822 Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including,...
[FLOCKER] – Ransomware Victim: A*u[.]edu[.]au
Ransomware Group: FLOCKER VICTIM NAME: A*ueduau NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook
CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook Today, CISA released the Microsoft Expanded Cloud Logs Implementation Playbook to help...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
CISA: Microsoft Releases January 2025 Security Updates
Microsoft Releases January 2025 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on January 21, 2025. These...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
CISA: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications CISA, in partnership with...
