SecuriTricks - 2024-09-06

Title	Published	Tags	Description	Number of indicators
Banking Trojans: Mekotio Looks to Expand Targets, BBTok Abuses Utility Command	Sept. 6, 2024, 9:53 a.m.	mekotio 2024-09-06 bbtok	Latin America is experiencing a surge in sophisticated phishing attacks targeting financial systems, with banking Trojans like Me…	9
EXPOSED: OnlyFans Hack Gone Wrong - How Cyber Criminals Turn into Victims Overnight	Sept. 6, 2024, 9:46 a.m.	2024-09-06 onlyfans lummac stealer	A sophisticated operation has been uncovered that turns aspiring OnlyFans hackers into victims. A user named Bilalkhanicom offere…	9

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-8292	9.8	Sept. 6, 2024, 7:15 a.m.	WP-Recall plugin for WordPress	security@wordfence.com CWE-639 2024-09-06 CVE-2024-8292
CVE-2024-7493	9.8	Sept. 6, 2024, 2:15 p.m.	WordPress WPCOM Member plugin	security@wordfence.com CWE-269 2024-09-06 CVE-2024-7493
CVE-2024-44401	9.8	Sept. 6, 2024, 4:15 p.m.	D-Link DI-8100G	cve@mitre.org CWE-77 2024-09-06 CVE-2024-44401
CVE-2024-44402	9.8	Sept. 6, 2024, 4:15 p.m.	D-Link DI-8100G	cve@mitre.org CWE-77 2024-09-06 CVE-2024-44402
CVE-2024-8517	9.8	Sept. 6, 2024, 4:15 p.m.	SPIP	disclosure@vulncheck.com CWE-646 2024-09-06 CVE-2024-8517
CVE-2024-45758	9.1	Sept. 6, 2024, 4:15 p.m.	H2O.ai H2O	cve@mitre.org CWE-502 2024-09-06 CVE-2024-45758
CVE-2024-21897	8.9	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-79 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-21897
CVE-2024-8247	8.8	Sept. 6, 2024, 4:15 a.m.	Newsletters plugin for WordPress	security@wordfence.com CWE-269 2024-09-06 CVE-2024-8247
CVE-2024-8480	8.8	Sept. 6, 2024, 4:15 a.m.	Image Optimizer, Resizer and CDN – Sirv plugin for WordPress	security@wordfence.com CWE-862 2024-09-06 CVE-2024-8480
CVE-2024-44739	8.8	Sept. 6, 2024, 1:15 p.m.	Sourcecodester Simple Forum Website	cve@mitre.org CWE-89 2024-09-06 CVE-2024-44739
CVE-2024-8428	8.8	Sept. 6, 2024, 2:15 p.m.	ForumWP - Forum & Discussion Board Plugin	security@wordfence.com CWE-639 2024-09-06 CVE-2024-8428
CVE-2023-34974	8.8	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-78 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-34974
CVE-2023-50360	8.8	Sept. 6, 2024, 5:15 p.m.	Video Station	CWE-89 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-50360
CVE-2024-21898	8.8	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-78 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-21898
CVE-2023-51366	8.7	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-22 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-51366
CVE-2024-45294	8.6	Sept. 6, 2024, 4:15 p.m.	HL7 FHIR Core Artifacts repository	security-advisories@github.com CWE-611 2024-09-06 CVE-2024-45294
CVE-2024-32762	8.2	Sept. 6, 2024, 5:15 p.m.	QuLog Center	CWE-79 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-32762
CVE-2024-39585	7.9	Sept. 6, 2024, 5:15 a.m.	Dell SmartFabric OS10 Software	security_alert@emc.com CWE-259 2024-09-06 CVE-2024-39585
CVE-2023-39298	7.8	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-862 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-39298
CVE-2024-38486	7.5	Sept. 6, 2024, 5:15 a.m.	Dell SmartFabric OS10 Software	security_alert@emc.com CWE-77 2024-09-06 CVE-2024-38486
CVE-2024-45300	7.5	Sept. 6, 2024, 1:15 p.m.	alf.io	security-advisories@github.com CWE-362 2024-09-06 CVE-2024-45300
CVE-2024-44408	7.5	Sept. 6, 2024, 4:15 p.m.	D-Link DIR-823G	cve@mitre.org CWE-200 2024-09-06 CVE-2024-44408
CVE-2024-8509	7.5	Sept. 6, 2024, 4:15 p.m.	Forklift Controller	secalert@redhat.com CWE-285 2024-09-06 CVE-2024-8509
CVE-2024-7652	7.5	Sept. 6, 2024, 7:15 p.m.	Firefox	CWE-476 security@mozilla.org 2024-09-06 CVE-2024-7652
CVE-2023-47563	7.4	Sept. 6, 2024, 5:15 p.m.	Video Station	security@qnapsecurity.com.tw CWE-77 2024-09-06 CVE-2023-47563
CVE-2024-7349	7.2	Sept. 6, 2024, 7:15 a.m.	LifterLMS - WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress	security@wordfence.com CWE-89 2024-09-06 CVE-2024-7349
CVE-2023-39300	7.2	Sept. 6, 2024, 5:15 p.m.	QTS	CWE-78 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-39300
CVE-2022-27592	6.7	Sept. 6, 2024, 5:15 p.m.	QVR Smart Client	CWE-428 security@qnapsecurity.com.tw 2024-09-06 CVE-2022-27592
CVE-2023-34979	6.6	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-78 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-34979
CVE-2024-21903	6.6	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	security@qnapsecurity.com.tw CWE-77 2024-09-06 CVE-2024-21903
CVE-2024-45299	6.5	Sept. 6, 2024, 1:15 p.m.	alf.io	security-advisories@github.com CWE-116 2024-09-06 CVE-2024-45299
CVE-2024-8317	6.4	Sept. 6, 2024, 7:15 a.m.	WP AdCenter - Ad Manager & Adsense Ads plugin for WordPress	CWE-79 security@wordfence.com 2024-09-06 CVE-2024-8317
CVE-2024-7599	6.4	Sept. 6, 2024, 2:15 p.m.	Advanced Sermons plugin for WordPress	CWE-79 security@wordfence.com 2024-09-06 CVE-2024-7599
CVE-2024-7611	6.4	Sept. 6, 2024, 2:15 p.m.	Enter Addons - Ultimate Template Builder for Elementor plugin	CWE-79 security@wordfence.com 2024-09-06 CVE-2024-7611
CVE-2024-27122	6.3	Sept. 6, 2024, 5:15 p.m.	Notes Station 3	CWE-79 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-27122
CVE-2024-27126	6.3	Sept. 6, 2024, 5:15 p.m.	Notes Station 3	CWE-79 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-27126
CVE-2024-45039	6.2	Sept. 6, 2024, 1:15 p.m.	gnark	security-advisories@github.com CWE-200 2024-09-06 CVE-2024-45039
CVE-2024-45400	6.1	Sept. 6, 2024, 12:15 a.m.	ckeditor-plugin-openlink	security-advisories@github.com CWE-79 2024-09-06 CVE-2024-45400
CVE-2024-45405	6.0	Sept. 6, 2024, 1:15 p.m.	gix-path (part of the gitoxide project)	security-advisories@github.com CWE-41 2024-09-06 CVE-2024-45405
CVE-2024-45040	5.9	Sept. 6, 2024, 1:15 p.m.	gnark	security-advisories@github.com CWE-200 2024-09-06 CVE-2024-45040
CVE-2024-21904	5.9	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-22 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-21904
CVE-2024-44837	5.4	Sept. 6, 2024, 2:15 p.m.	Drug	cve@mitre.org CWE-79 2024-09-06 CVE-2024-44837
CVE-2023-51367	5.4	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-120 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-51367
CVE-2023-51368	5.4	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-476 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-51368
CVE-2024-7415	5.3	Sept. 6, 2024, 4:15 a.m.	Remember Me Controls plugin for WordPress	CWE-200 security@wordfence.com 2024-09-06 CVE-2024-7415
CVE-2024-25584	5.3	Sept. 6, 2024, 3:15 p.m.	Dovecot	CWE-345 security@open-xchange.com 2024-09-06 CVE-2024-25584
CVE-2024-21906	4.7	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-78 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-21906
CVE-2024-8427	4.3	Sept. 6, 2024, 7:15 a.m.	Frontend Post Submission Manager Lite - Frontend Posting WordPress Plugin	security@wordfence.com CWE-862 2024-09-06 CVE-2024-8427
CVE-2024-7622	4.3	Sept. 6, 2024, 2:15 p.m.	Revision Manager TMC plugin for WordPress	security@wordfence.com CWE-862 2024-09-06 CVE-2024-7622
CVE-2023-45038	4.3	Sept. 6, 2024, 5:15 p.m.	Music Station	CWE-287 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-45038
CVE-2023-50366	4.3	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-79 security@qnapsecurity.com.tw 2024-09-06 CVE-2023-50366
CVE-2024-6792	3.5	Sept. 6, 2024, 6:15 a.m.	WP ULike WordPress plugin	contact@wpscan.com 2024-09-06 CVE-2024-6792
CVE-2024-27125	3.5	Sept. 6, 2024, 5:15 p.m.	Helpdesk	CWE-79 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-27125
CVE-2024-32771	2.6	Sept. 6, 2024, 5:15 p.m.	QNAP Operating System	security@qnapsecurity.com.tw CWE-307 2024-09-06 CVE-2024-32771
CVE-2024-44082	None	Sept. 6, 2024, 1:15 a.m.	OpenStack Ironic	cve@mitre.org 2024-09-06 CVE-2024-44082
CVE-2024-40865	None	Sept. 6, 2024, 2:15 a.m.	visionOS	product-security@apple.com 2024-09-06 CVE-2024-40865
CVE-2024-45751	None	Sept. 6, 2024, 5:15 a.m.	tgt (Linux target framework)	cve@mitre.org 2024-09-06 CVE-2024-45751
CVE-2023-52915	None	Sept. 6, 2024, 9:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-09-06 CVE-2023-52915
CVE-2023-52916	None	Sept. 6, 2024, 9:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-09-06 CVE-2023-52916
CVE-2024-1744	None	Sept. 6, 2024, 1:15 p.m.	Ariva Computer Accord ORS	CWE-200 iletisim@usom.gov.tr 2024-09-06 CVE-2024-1744
CVE-2024-6445	None	Sept. 6, 2024, 2:15 p.m.	DataFlowX Technology DataDiodeX	CWE-22 iletisim@usom.gov.tr 2024-09-06 CVE-2024-6445
CVE-2024-32763	None	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	CWE-120 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-32763
CVE-2024-38640	None	Sept. 6, 2024, 5:15 p.m.	Download Station	CWE-79 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-38640
CVE-2024-38641	None	Sept. 6, 2024, 5:15 p.m.	QNAP QTS	security@qnapsecurity.com.tw CWE-77 2024-09-06 CVE-2024-38641
CVE-2024-38642	None	Sept. 6, 2024, 5:15 p.m.	QuMagie	CWE-295 security@qnapsecurity.com.tw 2024-09-06 CVE-2024-38642
CVE-2024-45295	None	Sept. 6, 2024, 5:15 p.m.	UNKNOWN	security-advisories@github.com 2024-09-06 CVE-2024-45295
CVE-2024-8394	None	Sept. 6, 2024, 5:15 p.m.	Mozilla Thunderbird	security@mozilla.org 2024-09-06 CVE-2024-8394
CVE-2024-34155	None	Sept. 6, 2024, 9:15 p.m.	Go programming language	security@golang.org 2024-09-06 CVE-2024-34155
CVE-2024-34156	None	Sept. 6, 2024, 9:15 p.m.	Go programming language	security@golang.org 2024-09-06 CVE-2024-34156
CVE-2024-34158	None	Sept. 6, 2024, 9:15 p.m.	Go programming language	security@golang.org 2024-09-06 CVE-2024-34158
CVE-2024-44844	None	Sept. 6, 2024, 9:15 p.m.	DrayTek Vigor3900	cve@mitre.org 2024-09-06 CVE-2024-44844
CVE-2024-44845	None	Sept. 6, 2024, 9:15 p.m.	DrayTek Vigor3900	cve@mitre.org 2024-09-06 CVE-2024-44845
CVE-2024-44838	None	Sept. 6, 2024, 10:15 p.m.	RapidCMS	cve@mitre.org 2024-09-06 CVE-2024-44838
CVE-2024-44839	None	Sept. 6, 2024, 10:15 p.m.	RapidCMS	cve@mitre.org 2024-09-06 CVE-2024-44839
CVE-2024-45771	None	Sept. 6, 2024, 10:15 p.m.	RapidCMS	cve@mitre.org 2024-09-06 CVE-2024-45771
CVE-2024-8439	None	Sept. 6, 2024, 10:15 p.m.	UNKNOWN	security@wordfence.com 2024-09-06 CVE-2024-8439

» Click here to see all Vulnerabilities «

Tag : 2024-09-06

Attack Reports

Vulnerabilities