Back

Tag : 2024-07-11

6 attack reports | 36 vulnerabilities

Attack Reports

Title Published Tags Description Number of indicators
CVE-2024-4577 Exploits in the Wild One Day After Disclosure July 11, 2024, 8:35 p.m.
rat
xmrig
vulnerability
cryptominer
gh0st rat
muhstik
CVE-2024-4577
2024-07-11
redtail
php injection
One of the most recent examples of this onslaught lies in a critical vulnerability discovered in PHP (versions 8.1.*, before 8.1.… 17
Increase In The Exploitation Of Microsoft SmartScreen Vulnerability CVE-2024-21412 July 11, 2024, 1:12 p.m.
phishing
vulnerability
stealer
CVE-2024-21412
spam
malicious
2024-07-11
lumma
meduza stealer
Cyble analyzes an ongoing campaign exploiting a Microsoft SmartScreen vulnerability to deliver stealers through spam emails. The … 12
Ransomware: Activity Levels Remain High Despite Disruption July 11, 2024, 1:06 p.m.
ransomware
lockbit
vulnerability
blackcat
alphv
encryption
phobos
cyclops blink
CVE-2024-4577
noberus
tellyouthepass
blacksuit
2024-07-11
akira
warp av killer
qilin
disruption
While overall activity levels dipped slightly in the first quarter of 2024, the number of claimed attacks remained high, with Loc… 27
DodgeBox: A deep dive into the updated arsenal of APT41 July 11, 2024, 12:05 p.m.
loader
evasion
china
2024-07-11
stealthvector
moonwalk
nationstate
dodgebox
This blog post provides an in-depth technical analysis of a newly discovered malware loader called DodgeBox, which is attributed … 1
DarkGate: Dancing the Samba With Alluring Excel Files July 11, 2024, 11:56 a.m.
anti-analysis
autohotkey
darkgate
excel
sideloading
2024-07-11
This analysis delves into a DarkGate malware campaign from March-April 2024 that exploits Microsoft Excel files to retrieve malic… 37
FIN7: Silent Push unearths 4000+ phishing and shell domains July 11, 2024, 11:51 a.m.
phishing
eugenloader
2024-07-11
carbanak
spoofing
anunak
gracewire
Silent Push threat analysts have uncovered an extensive series of campaigns linked to the FIN7 cybercrime group, including severa… 94
» Click here to see all Attack Reports «

Vulnerabilities

CVE CVSS Published Product impacted Tags
CVE-2024-6397 9.8 July 11, 2024, 4:15 a.m. LOGO-VULNERABLEInstaWP Connect - 1-click WP Staging & Migration plugin for WordPress
security@wordfence.com
2024-07-11
CVE-2024-6397
CVE-2024-6624 9.8 July 11, 2024, 7:15 a.m. LOGO-VULNERABLEJSON API User plugin for WordPress
security@wordfence.com
2024-07-11
CVE-2024-6624
CVE-2024-6407 9.8 July 11, 2024, 10:15 a.m. LOGO-VULNERABLEUNKNOWN
CWE-200
cybersecurity@se.com
2024-07-11
CVE-2024-6407
CVE-2024-6385 9.6 July 11, 2024, 7:15 a.m. LOGO-VULNERABLEGitLab
CWE-284
cve@gitlab.com
2024-07-11
CVE-2024-6385
CVE-2024-6035 9.3 July 11, 2024, 11:15 a.m. LOGO-VULNERABLEgaizhenbiao/chuanhuchatgpt
CWE-79
security@huntr.dev
2024-07-11
CVE-2024-6035
CVE-2024-6666 8.8 July 11, 2024, 7:15 a.m. LOGO-VULNERABLEWP ERP plugin
security@wordfence.com
2024-07-11
CVE-2024-6666
CVE-2024-22280 8.5 July 11, 2024, 5:15 a.m. LOGO-VULNERABLEVMware Aria Automation
security@vmware.com
2024-07-11
CVE-2024-22280
CVE-2024-5681 7.8 July 11, 2024, 9:15 a.m. LOGO-VULNERABLEUNKNOWN
CWE-20
cybersecurity@se.com
2024-07-11
CVE-2024-5681
CVE-2024-6653 7.3 July 11, 2024, 12:15 a.m. LOGO-VULNERABLESimple Task List
CWE-89
cna@vuldb.com
2024-07-11
CVE-2024-6653
CVE-2024-2602 7.3 July 11, 2024, 9:15 a.m. LOGO-VULNERABLEUNKNOWN
CWE-22
cybersecurity@se.com
2024-07-11
CVE-2024-2602
CVE-2024-6447 7.2 July 11, 2024, 12:15 a.m. LOGO-VULNERABLEFULL - Cliente plugin for WordPress
security@wordfence.com
2024-07-11
CVE-2024-6447
CVE-2024-5679 7.1 July 11, 2024, 9:15 a.m. LOGO-VULNERABLEFoxboro Distributed Control System
CWE-787
cybersecurity@se.com
2024-07-11
CVE-2024-5679
CVE-2024-5680 7.1 July 11, 2024, 9:15 a.m. LOGO-VULNERABLEUNKNOWN
CWE-129
cybersecurity@se.com
2024-07-11
CVE-2024-5680
CVE-2024-22387 6.8 July 11, 2024, 3:15 a.m. LOGO-VULNERABLEGallagher Controller 6000
2024-07-11
CVE-2024-22387
disclosures@gallagher.com
CWE-642
CVE-2024-38433 6.7 July 11, 2024, 8:15 a.m. LOGO-VULNERABLENuvoton BootBlock
CWE-305
cna@cyber.gov.il
2024-07-11
CVE-2024-38433
CVE-2024-6138 6.5 July 11, 2024, 6:15 a.m. LOGO-VULNERABLESecure Copy Content Protection and Content Locking WordPress plugin
contact@wpscan.com
2024-07-11
CVE-2024-6138
CVE-2024-6256 6.4 July 11, 2024, 7:15 a.m. LOGO-VULNERABLEFeeds for YouTube (YouTube video, channel, and gallery plugin) plugin for WordPress
security@wordfence.com
2024-07-11
CVE-2024-6256
CVE-2016-15039 6.3 July 11, 2024, 3:15 a.m. LOGO-VULNERABLEphpLDAPadmin
CWE-444
cna@vuldb.com
2024-07-11
CVE-2016-15039
CVE-2024-23317 6.3 July 11, 2024, 3:15 a.m. LOGO-VULNERABLEController 6000
CWE-73
2024-07-11
disclosures@gallagher.com
CVE-2024-23317
CVE-2024-6676 6.3 July 11, 2024, 3:15 a.m. LOGO-VULNERABLEUNKNOWN
CWE-89
cna@vuldb.com
2024-07-11
CVE-2024-6676
CVE-2024-6026 6.1 July 11, 2024, 6:15 a.m. LOGO-VULNERABLESlider by 10Web WordPress plugin
contact@wpscan.com
2024-07-11
CVE-2024-6026
CVE-2024-6528 5.4 July 11, 2024, 9:15 a.m. LOGO-VULNERABLEUNKNOWN
CWE-79
cybersecurity@se.com
2024-07-11
CVE-2024-6528
CVE-2024-6210 5.3 July 11, 2024, 3:15 a.m. LOGO-VULNERABLEDuplicator plugin for WordPress
security@wordfence.com
2024-07-11
CVE-2024-6210
CVE-2024-0619 5.3 July 11, 2024, 4:15 a.m. LOGO-VULNERABLEPayflex Payment Gateway plugin for WordPress
security@wordfence.com
2024-07-11
CVE-2024-0619
CVE-2024-6554 5.3 July 11, 2024, 4:15 a.m. LOGO-VULNERABLEBranda - White Label WordPress, Custom Login Page Customizer plugin for WordPress
security@wordfence.com
2024-07-11
CVE-2024-6554
CVE-2024-5257 4.9 July 11, 2024, 7:15 a.m. LOGO-VULNERABLEGitLab CE/EE
CWE-284
cve@gitlab.com
2024-07-11
CVE-2024-5257
CVE-2024-23485 4.6 July 11, 2024, 3:15 a.m. LOGO-VULNERABLEGallagher Controller 6000
2024-07-11
disclosures@gallagher.com
CVE-2024-23485
CWE-1304
CVE-2024-5470 3.8 July 11, 2024, 7:15 a.m. LOGO-VULNERABLEGitLab CE/EE
CWE-284
cve@gitlab.com
2024-07-11
CVE-2024-5470
CVE-2024-23194 3.3 July 11, 2024, 3:15 a.m. LOGO-VULNERABLEGallagher Command Centre
CWE-117
2024-07-11
disclosures@gallagher.com
CVE-2024-23194
CVE-2024-2880 2.7 July 11, 2024, 7:15 a.m. LOGO-VULNERABLEGitLab CE/EE
CWE-284
cve@gitlab.com
2024-07-11
CVE-2024-2880
CVE-2024-40618 None July 11, 2024, 2:15 a.m. LOGO-VULNERABLEWhale browser
CWE-79
2024-07-11
CVE-2024-40618
cve@navercorp.com
CVE-2024-1845 None July 11, 2024, 6:15 a.m. LOGO-VULNERABLEVikRentCar Car Rental Management System WordPress plugin
contact@wpscan.com
2024-07-11
CVE-2024-1845
CVE-2024-4655 None July 11, 2024, 6:15 a.m. LOGO-VULNERABLEUltimate Blocks WordPress plugin
contact@wpscan.com
2024-07-11
CVE-2024-4655
CVE-2024-5444 None July 11, 2024, 6:15 a.m. LOGO-VULNERABLEBible Text WordPress plugin
contact@wpscan.com
2024-07-11
CVE-2024-5444
CVE-2024-6025 None July 11, 2024, 6:15 a.m. LOGO-VULNERABLEQuiz and Survey Master (QSM) WordPress plugin
contact@wpscan.com
2024-07-11
CVE-2024-6025
CVE-2024-6643 None July 11, 2024, 10:15 a.m. LOGO-VULNERABLEUNKNOWN
info@cert.vde.com
2024-07-11
CVE-2024-6643
» Click here to see all Vulnerabilities «