threatintel
CVE Alert: CVE-2024-11737
Vulnerability Summary: CVE-2024-11737 CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss...
CVE Alert: CVE-2024-12004
Vulnerability Summary: CVE-2024-12004 The WPC Order Notes for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
CVE Alert: CVE-2024-53289
Vulnerability Summary: CVE-2024-53289 Dell ThinOS version 2408 contains a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability. A low privileged attacker with...
CVE Alert: CVE-2024-10511
Vulnerability Summary: CVE-2024-10511 CWE-287: Improper Authentication vulnerability exists that could cause Denial of access to the web interface when someone...
CVE Alert: CVE-2024-12283
Vulnerability Summary: CVE-2024-12283 The WP Pipes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘x1’ parameter in...
CVE Alert: CVE-2024-11840
Vulnerability Summary: CVE-2024-11840 The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to unauthorized access of data...
CVE Alert: CVE-2024-12363
Vulnerability Summary: CVE-2024-12363 Insufficient permissions in the TeamViewer Patch & Asset Management component prior to version 24.12 on Windows allows...
CVE Alert: CVE-2024-12294
Vulnerability Summary: CVE-2024-12294 The Last Viewed Posts by WPBeginner plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
CVE Alert: CVE-2024-11008
Vulnerability Summary: CVE-2024-11008 The Members – Membership & User Role Editor Plugin plugin for WordPress is vulnerable to Sensitive Information...
CVE Alert: CVE-2024-54269
Vulnerability Summary: CVE-2024-54269 Missing Authorization vulnerability in Ninja Team Notibar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects...
[SARCOMA] – Ransomware Victim: Brasilmad
Ransomware Group: SARCOMA VICTIM NAME: Brasilmad NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-12325
Vulnerability Summary: CVE-2024-12325 The Waymark plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘content’ parameter in all...
CVE Alert: CVE-2024-11351
Vulnerability Summary: CVE-2024-11351 The Restrict – membership, site, content and user access restrictions for WordPress plugin for WordPress is vulnerable...
CVE Alert: CVE-2024-51460
Vulnerability Summary: CVE-2024-51460 IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information when a detailed...
CVE Alert: CVE-2023-23472
Vulnerability Summary: CVE-2023-23472 IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7) could allow an authenticated user to obtain sensitive...
CVE Alert: CVE-2024-28141
Vulnerability Summary: CVE-2024-28141 The web application is not protected against cross-site request forgery attacks. Therefore, an attacker can trick users...
CVE Alert: CVE-2024-11598
Vulnerability Summary: CVE-2024-11598 Under specific circumstances, insecure permissions in Ivanti Application Control before version 2024.3 HF1, 2024.1 HF2, or 2023.3...
CVE Alert: CVE-2024-11597
Vulnerability Summary: CVE-2024-11597 Under specific circumstances, insecure permissions in Ivanti Performance Manager before version 2024.3 HF1, 2024.1 HF1, or 2023.3...
CVE Alert: CVE-2024-9845
Vulnerability Summary: CVE-2024-9845 Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1 allows a local authenticated attacker to...
CVE Alert: CVE-2024-10251
Vulnerability Summary: CVE-2024-10251 Under specific circumstances, insecure permissions in Ivanti Security Controls before version 2024.4.1 allows a local authenticated attacker...
CVE Alert: CVE-2024-8496
Vulnerability Summary: CVE-2024-8496 Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker...
CISA: CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities
CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities Today, the Cybersecurity and Infrastructure...
CISA: Citrix Releases Security Updates for NetScaler and Citrix Session Recording
Citrix Releases Security Updates for NetScaler and Citrix Session Recording Citrix released security updates to address multiple vulnerabilities in NetScaler...
