CVE Alert: CVE-2024-12898
Vulnerability Summary: CVE-2024-12898 A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. It has been declared as...
threatintel
CVE Alert: CVE-2024-47864
Vulnerability Summary: CVE-2024-47864 home 5G HR02, Wi-Fi STATION SH-52B, and Wi-Fi STATION SH-54C contain a buffer overflow vulnerability in the...
CVE Alert: CVE-2024-12901
Vulnerability Summary: CVE-2024-12901 A vulnerability classified as critical was found in FoxCMS up to 1.2. Affected by this vulnerability is...
CVE Alert: CVE-2024-12900
Vulnerability Summary: CVE-2024-12900 A vulnerability classified as critical has been found in FoxCMS up to 1.2. Affected is an unknown...
CVE Alert: CVE-2024-12899
Vulnerability Summary: CVE-2024-12899 A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. It has been rated as...
CVE Alert: CVE-2024-45721
Vulnerability Summary: CVE-2024-45721 home 5G HR02, Wi-Fi STATION SH-52B, and Wi-Fi STATION SH-54C contain an OS command injection vulnerability in...
CVE Alert: CVE-2024-11230
Vulnerability Summary: CVE-2024-11230 The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
[SARCOMA] – Ransomware Victim: Baker Tilly Morrison Murray
Ransomware Group: SARCOMA VICTIM NAME: Baker Tilly Morrison Murray NOTE: No files or stolen information are by RedPacket Security. Any...
[SARCOMA] – Ransomware Victim: Kern Services
Ransomware Group: SARCOMA VICTIM NAME: Kern Services NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-12903
Vulnerability Summary: CVE-2024-12903 Incorrect default permissions vulnerability in Evoko Home, affecting version 2.4.2 to 2.7.4. A non-admin user could exploit...
CVE Alert: CVE-2024-12902
Vulnerability Summary: CVE-2024-12902 ANCHOR from Global Wisdom Software is an integrated product running on a Windows virtual machine. The underlying...
CVE Alert: CVE-2024-45387
Vulnerability Summary: CVE-2024-45387 An SQL injection vulnerability in Traffic Ops in Apache Traffic Control = 8.0.0 allows a privileged user...
CVE Alert: CVE-2024-53256
Vulnerability Summary: CVE-2024-53256 Rizin is a UNIX-like reverse engineering framework and command-line toolset. `rizin.c` still had an old snippet of...
CVE Alert: CVE-2024-55539
Vulnerability Summary: CVE-2024-55539 Weak algorithm used to sign RPM package. The following products are affected: Acronis Cyber Protect Cloud Agent...
CVE Alert: CVE-2018-25106
Vulnerability Summary: CVE-2018-25106 A vulnerability, which was classified as critical, has been found in webuidesigning NebulaX Theme up to 5.0...
CVE Alert: CVE-2024-56364
Vulnerability Summary: CVE-2024-56364 SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in 1.0.12 and ending...
CVE Alert: CVE-2024-56362
Vulnerability Summary: CVE-2024-56362 Navidrome is an open source web-based music collection server and streamer. Navidrome stores the JWT secret in...
CVE Alert: CVE-2024-53961
Vulnerability Summary: CVE-2024-53961 ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a Pathname to a...
CVE Alert: CVE-2024-56363
Vulnerability Summary: CVE-2024-56363 APTRS (Automated Penetration Testing Reporting System) is a Python and Django-based automated reporting tool designed for penetration...
[FUNKSEC] – Ransomware Victim: itc[.]gov[.]ae with 1K !
Ransomware Group: FUNKSEC VICTIM NAME: itcgovae with 1K ! NOTE: No files or stolen information are by RedPacket Security. Any...
[FUNKSEC] – Ransomware Victim: egyptair[.]com 5 sell
Ransomware Group: FUNKSEC VICTIM NAME: egyptaircom 5 sell NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FUNKSEC] – Ransomware Victim: asjp[.]cerist[.]dz sell
Ransomware Group: FUNKSEC VICTIM NAME: asjpceristdz sell NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CISA: CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers
CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers Today, CISA—in partnership with...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 26, 2024. These...
