CYBER Threat Intelligence Reports
LATEST CTIs
CVE-2024-5756: Icegram Express Flaw Puts 90,000 WordPress Sites at Risk
A critical vulnerability, CVE-2024-5756, in the Icegram Express plugin for WordPress exposes over 90,000 sites to potential data breaches. This flaw, with a CVSS score…
Read more >
CVE-2024-28397: js2py Vulnerability Exposes Millions of Python Users to Remote Code Execution (RCE)
A critical vulnerability, CVE-2024-28397, in the js2py library exposes millions of Python users to remote code execution (RCE) attacks. With a CVSS score of 8.8,…
Read more >
High-Risk Vulnerabilities in Iris DFIR Platform: Analysis and Mitigation (CVE-2024-25624 & CVE-2024-34060)
Two vulnerabilities in the Iris DFIR platform—CVE-2024-25624 (High-Risk SSTI, CVSS: 6.8) and CVE-2024-34060 (High-Risk Arbitrary File Write, CVSS: 8.8)—pose significant security risks by allowing remote…
Read more >
0-Day Vulnerability in 10,000 Web Apps Exploited Using XSS Payloads
0-Day Vulnerability in 10,000 Web Apps Exploited Using XSS Payloads: A critical XSS vulnerability (CVE-2024-37629) in SummerNote 0.8.18 impacts over 10,000 web applications, allowing attackers…
Read more >
Ivanti EPM SQL Injection Flaw Allows Remote Code Execution
Ivanti EPM users must urgently update to mitigate CVE-2024-29824, a critical SQL injection flaw enabling remote code execution via the RecordGoodApp function.
Read more >
256,000+ Publicly Exposed Windows Servers Vulnerable to MSMQ RCE Flaw
256,000+ Windows Servers Vulnerable to Critical MSMQ RCE Flaw (CVE-2024-30080) Pose Significant Global Security Threat.
Read more >
