Tag : 2024-08-01

5 attack reports | 120 vulnerabilities

Attack Reports

Title Published Tags Description Number of indicators
Threat Actors Behind the DEV#POPPER Campaign Have Retooled and are Continuing to Target Software Developers via Social Engineering Aug. 1, 2024, 11:01 a.m. The intelligence report discusses an ongoing malware campaign that targets software developers through social engineering tactics… 14
Threat Actor Abuses Cloudflare Tunnels to Deliver RATs Aug. 1, 2024, 10:54 a.m. Proofpoint is tracking a cluster of cybercriminal threat activity leveraging Cloudflare Tunnels to deliver malware, particularly … 13
Social Media Malvertising Campaign Promotes Fake AI Editor Website for Credential Theft Aug. 1, 2024, 10:46 a.m. An examination of how threat actors hijack social media pages, rename them to resemble legitimate AI photo editors, and post mali… 73
Increased Activity Against Apache OFBiz CVE-2024-32113 Aug. 1, 2024, 9:01 a.m. Recently, there has been a surge in malicious activity targeting a critical vulnerability (CVE-2024-32113) in the Apache OFBiz fr… 5
Strikes with commercial malware against organizations in Kazakhstan Aug. 1, 2024, 8:56 a.m. BI.ZONE experts have been monitoring the activities of a threat group called Bloody Wolf since late 2023. This group targets orga… 10

Vulnerabilities

CVE CVSS Published Product impacted Tags
CVE-2024-7332 9.8 Aug. 1, 2024, 1:15 a.m. LOGO-VULNERABLETOTOLINK CP450
CVE-2024-38770 9.8 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEBackup and Staging by WP Time Capsule
CVE-2024-41961 9.6 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEElektra
CVE-2024-39619 9.0 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLECridioStudio ListingPro
CVE-2024-7331 8.8 Aug. 1, 2024, 12:15 a.m. LOGO-VULNERABLETOTOLINK A3300R
CVE-2024-7333 8.8 Aug. 1, 2024, 2:15 a.m. LOGO-VULNERABLETOTOLINK N350RT
CVE-2024-7334 8.8 Aug. 1, 2024, 2:15 a.m. LOGO-VULNERABLETOTOLINK EX1200L
CVE-2024-7335 8.8 Aug. 1, 2024, 2:15 a.m. LOGO-VULNERABLETOTOLINK EX200
CVE-2024-7336 8.8 Aug. 1, 2024, 3:15 a.m. LOGO-VULNERABLETOTOLINK EX200
CVE-2024-7337 8.8 Aug. 1, 2024, 3:15 a.m. LOGO-VULNERABLETOTOLINK EX1200L
CVE-2024-6698 8.8 Aug. 1, 2024, 4:15 a.m. LOGO-VULNERABLEFundEngine plugin for WordPress
CVE-2024-7338 8.8 Aug. 1, 2024, 4:15 a.m. LOGO-VULNERABLETOTOLINK EX1200L
CVE-2024-39633 8.8 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEPowerPack for Beaver Builder
CVE-2024-39634 8.8 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEPowerPack Pro for Elementor
CVE-2024-39274 8.7 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-39777 8.7 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-39624 8.5 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEListingPro
CVE-2024-39636 8.3 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEBetter Find and Replace
CVE-2024-3983 8.1 Aug. 1, 2024, 6:15 a.m. LOGO-VULNERABLEWooCommerce Customers Manager WordPress plugin
CVE-2024-6873 8.1 Aug. 1, 2024, 4:15 p.m. LOGO-VULNERABLEClickHouse
CVE-2024-41956 8.1 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLESoft Serve
CVE-2023-52209 8.0 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEWPForms User Registration
CVE-2024-39621 8.0 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEListingPro
CVE-2024-7358 7.8 Aug. 1, 2024, 2:15 p.m. LOGO-VULNERABLEGetscreen Agent
CVE-2024-38761 7.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEDylan James Zephyr Project Manager
CVE-2024-36492 7.4 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-7366 7.3 Aug. 1, 2024, 9:16 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-7369 7.3 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLESourceCodester Simple Realtime Quiz System
CVE-2024-38775 7.2 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLECTX Feed
CVE-2024-6529 7.1 Aug. 1, 2024, 6:15 a.m. LOGO-VULNERABLEUltimate Classified Listings WordPress plugin
CVE-2024-38746 7.1 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEMakeStories (for Google Web Stories)
CVE-2024-39652 7.1 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEWooCommerce PDF Vouchers
CVE-2024-39656 7.1 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLETin Canny Reporting for LearnDash
CVE-2024-39663 7.1 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEWP Fast Total Search
CVE-2024-34021 6.8 Aug. 1, 2024, 2:15 a.m. LOGO-VULNERABLEELECOM wireless LAN routers
CVE-2024-39607 6.8 Aug. 1, 2024, 2:15 a.m. LOGO-VULNERABLEELECOM wireless LAN routers
CVE-2024-39832 6.8 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-32863 6.8 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEexacqVision Web Services
CVE-2024-32862 6.8 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEExacqVision Web Services
CVE-2024-1747 6.5 Aug. 1, 2024, 6:15 a.m. LOGO-VULNERABLEWooCommerce Customers Manager WordPress plugin
CVE-2024-38772 6.5 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEJetWidgets for Elementor and WooCommerce
CVE-2024-39649 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEEssential Addons for Elementor
CVE-2024-39655 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLELiquidPoll
CVE-2024-39659 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEWP-PostRatings
CVE-2024-39661 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEKubio AI Page Builder
CVE-2024-39662 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEBlack Widgets For Elementor
CVE-2024-39665 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEYMC Filter & Grids
CVE-2024-39667 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEElement Pack Elementor Addons
CVE-2024-39668 6.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEExtensions for Elementor
CVE-2024-2090 6.4 Aug. 1, 2024, 5:15 a.m. LOGO-VULNERABLERemote Content Shortcode plugin for WordPress
CVE-2024-5330 6.4 Aug. 1, 2024, 7:15 a.m. LOGO-VULNERABLEBreakdance plugin for WordPress
CVE-2024-7302 6.4 Aug. 1, 2024, 7:15 a.m. LOGO-VULNERABLEBlog2Social: Social Media Auto Post & Scheduler plugin for WordPress
CVE-2024-6346 6.4 Aug. 1, 2024, 10:15 a.m. LOGO-VULNERABLEGutenberg Blocks, Page Builder – ComboBlocks plugin for WordPress
CVE-2024-2455 6.4 Aug. 1, 2024, 1:15 p.m. LOGO-VULNERABLEElement Pack - Addon for Elementor Page Builder WordPress Plugin
CVE-2024-32864 6.4 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEexacqVision Web Services
CVE-2024-32865 6.4 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEexacqVision Server
CVE-2024-7330 6.3 Aug. 1, 2024, 12:15 a.m. LOGO-VULNERABLEYouDianCMS
CVE-2024-7357 6.3 Aug. 1, 2024, 1:15 p.m. LOGO-VULNERABLED-Link DIR-600
CVE-2024-7361 6.3 Aug. 1, 2024, 6:15 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-7362 6.3 Aug. 1, 2024, 7:15 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-7363 6.3 Aug. 1, 2024, 7:15 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-7364 6.3 Aug. 1, 2024, 8:15 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-7365 6.3 Aug. 1, 2024, 8:15 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-28972 5.9 Aug. 1, 2024, 8:15 a.m. LOGO-VULNERABLEDell InsightIQ
CVE-2024-39648 5.9 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEEventin
CVE-2024-39660 5.9 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEJordy Meow Photo Engine
CVE-2024-38490 5.8 Aug. 1, 2024, 8:15 a.m. LOGO-VULNERABLEDell iDRAC Service Module
CVE-2024-32931 5.7 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEexacqVision Web Service
CVE-2024-6923 5.5 Aug. 1, 2024, 2:15 p.m. LOGO-VULNERABLECPython
CVE-2024-41144 5.5 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-39630 5.5 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEMotoPress Timetable and Event Schedule
CVE-2024-39637 5.4 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEEdubin
CVE-2024-6687 5.3 Aug. 1, 2024, 2:15 a.m. LOGO-VULNERABLECTT Expresso para WooCommerce plugin for WordPress
CVE-2024-1715 5.3 Aug. 1, 2024, 4:15 a.m. LOGO-VULNERABLEAdFoxly - Ad Manager, AdSense Ads & Ads.txt plugin for WordPress
CVE-2024-7339 5.3 Aug. 1, 2024, 4:15 a.m. LOGO-VULNERABLEUNKNOWN
CVE-2024-41123 5.3 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEREXML gem for Ruby
CVE-2024-41946 5.3 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEREXML gem for Ruby
CVE-2024-38791 4.9 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEJordy Meow AI Engine: ChatGPT Chatbot
CVE-2024-4090 4.8 Aug. 1, 2024, 6:15 a.m. LOGO-VULNERABLEWordPress plugin - Floating Notification Bar
CVE-2024-25947 4.8 Aug. 1, 2024, 7:15 a.m. LOGO-VULNERABLEDell iDRAC Service Module
CVE-2024-25948 4.8 Aug. 1, 2024, 8:15 a.m. LOGO-VULNERABLEDell iDRAC Service Module
CVE-2024-38481 4.8 Aug. 1, 2024, 8:15 a.m. LOGO-VULNERABLEDell iDRAC Service Module
CVE-2024-5678 4.7 Aug. 1, 2024, 7:15 a.m. LOGO-VULNERABLEManageEngine Applications Manager
CVE-2024-7211 4.7 Aug. 1, 2024, 5:16 p.m. LOGO-VULNERABLE1E Platform
CVE-2024-41962 4.6 Aug. 1, 2024, 5:16 p.m. LOGO-VULNERABLEBostr
CVE-2024-41957 4.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEVim
CVE-2024-6040 4.4 Aug. 1, 2024, 4:15 p.m. LOGO-VULNERABLElollms-webui
CVE-2024-5331 4.3 Aug. 1, 2024, 7:15 a.m. LOGO-VULNERABLEBreakdance plugin for WordPress
CVE-2024-39839 4.3 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-7360 4.3 Aug. 1, 2024, 6:15 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-38768 4.3 Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLEThe Pack Elementor addons
CVE-2024-7367 4.3 Aug. 1, 2024, 9:16 p.m. LOGO-VULNERABLESourceCodester Simple Realtime Quiz System
CVE-2024-41965 4.2 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEVim
CVE-2024-41162 4.1 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-39837 3.8 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-7342 3.5 Aug. 1, 2024, 5:15 a.m. LOGO-VULNERABLEBaidu UEditor
CVE-2024-7343 3.5 Aug. 1, 2024, 5:15 a.m. LOGO-VULNERABLEBaidu UEditor
CVE-2024-7359 3.5 Aug. 1, 2024, 5:16 p.m. LOGO-VULNERABLESourceCodester Tracking Monitoring Management System
CVE-2024-7368 3.5 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLESimple Realtime Quiz System
CVE-2024-38489 3.1 Aug. 1, 2024, 8:15 a.m. LOGO-VULNERABLEDell iDRAC Service Module
CVE-2024-41948 3.0 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEbiscuit-java
CVE-2024-41949 3.0 Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEbiscuit-rust
CVE-2024-29977 2.7 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-41926 2.7 Aug. 1, 2024, 3:15 p.m. LOGO-VULNERABLEMattermost
CVE-2024-23600 2.7 Aug. 1, 2024, 5:16 p.m. LOGO-VULNERABLEPingIDM OPENIDM
CVE-2024-40883 None Aug. 1, 2024, 2:15 a.m. LOGO-VULNERABLEELECOM wireless LAN routers
CVE-2024-2843 None Aug. 1, 2024, 6:15 a.m. LOGO-VULNERABLEWooCommerce Customers Manager WordPress plugin
CVE-2024-2872 None Aug. 1, 2024, 6:15 a.m. LOGO-VULNERABLEsocialdriver-framework WordPress plugin
CVE-2024-6496 None Aug. 1, 2024, 6:15 a.m. LOGO-VULNERABLELight Poll WordPress plugin
CVE-2024-41260 None Aug. 1, 2024, 4:15 p.m. LOGO-VULNERABLEnetbird
CVE-2024-41264 None Aug. 1, 2024, 4:15 p.m. LOGO-VULNERABLEcasdoor
CVE-2024-41265 None Aug. 1, 2024, 4:15 p.m. LOGO-VULNERABLEcortex
CVE-2024-6242 None Aug. 1, 2024, 4:15 p.m. LOGO-VULNERABLERockwell Automation ControlLogix controller
CVE-2024-6990 None Aug. 1, 2024, 6:15 p.m. LOGO-VULNERABLEGoogle Chrome on Android
CVE-2024-7255 None Aug. 1, 2024, 6:15 p.m. LOGO-VULNERABLEGoogle Chrome
CVE-2024-7256 None Aug. 1, 2024, 6:15 p.m. LOGO-VULNERABLEGoogle Chrome on Android
CVE-2024-4353 None Aug. 1, 2024, 7:15 p.m. LOGO-VULNERABLEConcrete CMS
CVE-2024-41259 None Aug. 1, 2024, 9:15 p.m. LOGO-VULNERABLENavidrome
CVE-2024-7093 None Aug. 1, 2024, 9:16 p.m. LOGO-VULNERABLEDispatch notification service
CVE-2024-32758 None Aug. 1, 2024, 10:15 p.m. LOGO-VULNERABLEExacqVision