RedPacket Security14m ago

CVE Alert: CVE-2025-13066 - kraftplugins - Demo Importer Plus - https://www.redpacketsecurity.com/cve-alert-cve-2025-13066-kraftplugins-demo-importer-plus/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-13066 #kraftplugins #demo-importer-plus

CVE Alert: CVE-2025-13066 - kraftplugins - Demo Importer Plus - RedPacket Security

The Demo Importer Plus plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 2.0.6. This is due to insufficient

RedPacket Security
Bill1h ago

I was utterly overwhelmed today so I let React2Shell slide on by. This is a really good catch-up article.

https://www.securityweek.com/react2shell-in-the-wild-exploitation-expected-for-critical-react-vulnerability/

#cve #react

React2Shell: In-the-Wild Exploitation Expected for Critical React Vulnerability

Critical React vulnerability tracked as CVE-2025-55182 and React2Shell can be exploited for unauthenticated remote code execution. 

SecurityWeek
RedPacket Security5h ago

CVE Alert: CVE-2025-13543 - rtowebsites - PostGallery - https://www.redpacketsecurity.com/cve-alert-cve-2025-13543-rtowebsites-postgallery/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-13543 #rtowebsites #postgallery

CVE Alert: CVE-2025-13543 - rtowebsites - PostGallery - RedPacket Security

The PostGallery plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the 'PostGalleryUploader' class

RedPacket Security
RedPacket Security9h ago

CVE Alert: CVE-2025-54158 - Synology - BeeDrive for desktop - https://www.redpacketsecurity.com/cve-alert-cve-2025-54158-synology-beedrive-for-desktop/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-54158 #synology #beedrive-for-desktop

CVE Alert: CVE-2025-54158 - Synology - BeeDrive for desktop - RedPacket Security

Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute

RedPacket Security
RedPacket Security9h ago

CVE Alert: CVE-2025-66287 - Red Hat - Red Hat Enterprise Linux 6 - https://www.redpacketsecurity.com/cve-alert-cve-2025-66287-red-hat-red-hat-enterprise-linux-6/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-66287 #red-hat #red-hat-enterprise-linux-6

CVE Alert: CVE-2025-66287 - Red Hat - Red Hat Enterprise Linux 6 - RedPacket Security

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.

RedPacket Security
RedPacket Security9h ago

CVE Alert: CVE-2025-14015 - H3C - Magic B0 - https://www.redpacketsecurity.com/cve-alert-cve-2025-14015-h3c-magic-b0/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-14015 #h3c #magic-b0

CVE Alert: CVE-2025-14015 - H3C - Magic B0 - RedPacket Security

A weakness has been identified in H3C Magic B0 up to 100R002. This impacts the function EditWlanMacList of the file /goform/aspForm. This manipulation of the

RedPacket Security
RedPacket Security9h ago

CVE Alert: CVE-2025-54160 - Synology - BeeDrive for desktop - https://www.redpacketsecurity.com/cve-alert-cve-2025-54160-synology-beedrive-for-desktop/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-54160 #synology #beedrive-for-desktop

CVE Alert: CVE-2025-54160 - Synology - BeeDrive for desktop - RedPacket Security

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960

RedPacket Security
RedPacket Security9h ago

CVE Alert: CVE-2025-54159 - Synology - BeeDrive for desktop - https://www.redpacketsecurity.com/cve-alert-cve-2025-54159-synology-beedrive-for-desktop/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-54159 #synology #beedrive-for-desktop

CVE Alert: CVE-2025-54159 - Synology - BeeDrive for desktop - RedPacket Security

Missing authorization vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows remote attackers to delete arbitrary files via

RedPacket Security
RedPacket Security9h ago

CVE Alert: CVE-2025-29846 - Synology - Synology Router Manager (SRM) - https://www.redpacketsecurity.com/cve-alert-cve-2025-29846-synology-synology-router-manager-srm/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-29846 #synology #synology-router-manager-srm

CVE Alert: CVE-2025-29846 - Synology - Synology Router Manager (SRM) - RedPacket Security

A vulnerability in portenable cgi allows remote authenticated users to get the status of installed packages.

RedPacket Security
RedPacket Security10h ago

HackerOne Bug Bounty Disclosure: smtp-protocol-injection-via-crlf-in-curlopt-mail-from-leading-to-email-spoofing-anonymous - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-smtp-protocol-injection-via-crlf-in-curlopt-mail-from-leading-to-email-spoofing-anonymous/

#HackerOne #CVE #Vulnerability #OSINT #ThreatIntel #Cyber

HackerOne Bug Bounty Disclosure: smtp-protocol-injection-via-crlf-in-curlopt-mail-from-leading-to-email-spoofing-anonymous - RedPacket Security

Company Name: curl

RedPacket Security