Tag: 2024-10-05

1 Attack Reports | 83 Vulnerabilities

Attack reports

No Way to Hide: Uncovering New Campaigns from Daily Tunneling Detection

This article analyzes four previously undisclosed DNS tunneling campaigns identified through a new campaign monitoring system. The system detects tunneling domains based on common techniques and attributes used in malicious campaigns. Four new campaigns were uncovered: FinHealthXDS (targeting finan…
cobalt strike
icedid
dns tunneling
data exfiltration
redline stealer
2024-10-05
russiansite
nsfinder
8ns
covert communications
hiloti
finhealthxds
Published: October 5, 2024
Downloadable IOCs: 0
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-47849

9.8
    Mediawiki
  • Cargo
Published: October 5, 2024

CVE-2024-44014

9.6
    Vmax Project Manager
Published: October 5, 2024

CVE-2024-47846

8.8
    Mediawiki
  • Cargo
Published: October 5, 2024

CVE-2024-9532

8.8
    Dlink
  • Dir-605l Firmware
  • Dir-605l
Published: October 5, 2024

CVE-2024-9533

8.8
    Dlink
  • Dir-605l Firmware
  • Dir-605l
Published: October 5, 2024

CVE-2024-9534

8.8
    Dlink
  • Dir-605l Firmware
  • Dir-605l
Published: October 5, 2024

CVE-2024-9535

8.8
    Dlink
  • Dir-605l Firmware
  • Dir-605l
Published: October 5, 2024

CVE-2024-47845

8.2
    Wikimedia
  • Wikimedia-Extensions-Css
Published: October 5, 2024

CVE-2024-44023

8.1
    ABCApp Creator
Published: October 5, 2024

CVE-2024-47323

8.1
    WP Timeline - Vertical and Horizontal timeline plugin
Published: October 5, 2024

CVE-2024-47319

8.0
    Bit Form – Contact Form Plugin
Published: October 5, 2024

CVE-2024-47841

7.5
    Wikimedia
  • Wikimedia-Extensions-Css
Published: October 5, 2024

CVE-2024-44011

7.5
    WP Ticket Ultra Help Desk & Support Plugin
Published: October 5, 2024

CVE-2024-44012

7.5
    WP Newsletter Subscription
Published: October 5, 2024

CVE-2024-44013

7.5
    VR Calendar
Published: October 5, 2024

CVE-2024-44015

7.5
    Users Control
Published: October 5, 2024

CVE-2024-44016

7.5
    Podiant
Published: October 5, 2024

CVE-2024-44018

7.5
    Instant Chat Floating Button for WordPress Websites
Published: October 5, 2024

CVE-2024-44034

7.5
    WPSPX
Published: October 5, 2024

CVE-2024-47324

7.5
    WP Timeline - Vertical and Horizontal timeline plugin
Published: October 5, 2024

CVE-2024-9314

7.2
    Rank Math SEO
Published: October 5, 2024

CVE-2024-47638

7.1
    vCita Online Booking & Scheduling Calendar for WordPress by vcita
Published: October 5, 2024

CVE-2024-47644

7.1
    Copyscape Premium
Published: October 5, 2024

CVE-2024-47378

7.1
    WPCOM Member
Published: October 5, 2024

CVE-2024-47379

7.1
    Web Directory Free
Published: October 5, 2024

CVE-2024-47380

7.1
    WP-Lister Lite for eBay
Published: October 5, 2024

CVE-2024-47384

7.1
    WP Compress WP Compress – Image Optimizer [All-In-One]
Published: October 5, 2024

CVE-2024-47386

7.1
    WP Extended The Ultimate WordPress Toolkit
Published: October 5, 2024

CVE-2024-47388

7.1
    SliceWP
Published: October 5, 2024

CVE-2024-47389

7.1
    Basix NEX-Forms – Ultimate Form Builder
Published: October 5, 2024

CVE-2024-47394

7.1
    eyecix JobSearch
Published: October 5, 2024

CVE-2024-47395

7.1
    Woocommerce
Published: October 5, 2024

CVE-2024-47624

7.1
    BannerSky BSK Forms Blacklist
Published: October 5, 2024

CVE-2024-47369

7.1
    Social Auto Poster
Published: October 5, 2024

CVE-2024-47374

7.1
    LiteSpeed Cache
Published: October 5, 2024

CVE-2024-8743

6.8
    Bit File Manager WordPress plugin
Published: October 5, 2024

CVE-2024-47309

6.6
    Condless Cities Shipping Zones for WooCommerce
Published: October 5, 2024

CVE-2024-9161

6.5
    Rank Math SEO plugin for WordPress
Published: October 5, 2024

CVE-2024-47631

6.5
    Logo Carousel – Clients logo carousel for WP
Published: October 5, 2024

CVE-2024-47632

6.5
    DethemeKit For Elementor
Published: October 5, 2024

CVE-2024-47633

6.5
    Zoho Forms
Published: October 5, 2024

CVE-2024-47639

6.5
    VdoCipher
Published: October 5, 2024

CVE-2024-47642

6.5
    Keap Official Opt-in Forms
Published: October 5, 2024

CVE-2024-47643

6.5
    Include Fussball.De Widgets
Published: October 5, 2024

CVE-2024-47625

6.5
    ThemeLooks Enter Addons
Published: October 5, 2024

CVE-2024-47626

6.5
    RomethemeKit For Elementor
Published: October 5, 2024

CVE-2024-47627

6.5
    WP Travel Gutenberg Blocks
Published: October 5, 2024

CVE-2024-47628

6.5
    LA-Studio Element Kit for Elementor
Published: October 5, 2024

CVE-2024-47629

6.5
    BdThemes Ultimate Store Kit Elementor Addons
Published: October 5, 2024

CVE-2024-47630

6.5
    ElementInvader Addons for Elementor
Published: October 5, 2024

CVE-2024-47382

6.5
    Webvitaly Page-list
Published: October 5, 2024

CVE-2024-47385

6.5
    WPDeveloper Essential Blocks for Gutenberg
Published: October 5, 2024

CVE-2024-47390

6.5
    Jeg Elementor Kit
Published: October 5, 2024

CVE-2024-47391

6.5
    BoldThemes Bold Page Builder
Published: October 5, 2024

CVE-2024-47392

6.5
    Element Pack Elementor Addons
Published: October 5, 2024

CVE-2024-47393

6.5
    Quill Forms
Published: October 5, 2024

CVE-2024-47621

6.5
    Katie Seaborn Zotpress
Published: October 5, 2024

CVE-2024-47622

6.5
    ILLID Advanced Woo Labels
Published: October 5, 2024

CVE-2024-47370

6.5
    Paul Bearne Author Avatars List/Block
Published: October 5, 2024

CVE-2024-47373

6.5
    LiteSpeed Cache
Published: October 5, 2024

CVE-2024-47375

6.5
    XLTab - Accordions and Tabs for Elementor Page Builder
Published: October 5, 2024

CVE-2024-9455

6.4
    WP Cleanup and Basic Functions plugin for WordPress
Published: October 5, 2024

CVE-2024-8486

6.4
    Phlox theme plugin for WordPress
Published: October 5, 2024

CVE-2024-9536

6.3
    ESAFENET CDG
Published: October 5, 2024

CVE-2024-47847

6.1
    Mediawiki
  • Cargo
Published: October 5, 2024

CVE-2024-9385

6.1
    Themify Builder plugin for WordPress
Published: October 5, 2024

CVE-2024-9417

6.1
    Hash Form - Drag & Drop Form Builder plugin for WordPress
Published: October 5, 2024

CVE-2024-47647

5.9
    HelpieWP Accordion & FAQ
Published: October 5, 2024

CVE-2024-47381

5.9
    Depicter Slider
Published: October 5, 2024

CVE-2024-47383

5.9
    The Pack Elementor addons
Published: October 5, 2024

CVE-2024-47387

5.9
    LinkGraph Search Atlas SEO
Published: October 5, 2024

CVE-2024-47623

5.9
    Gallery Lightbox
Published: October 5, 2024

CVE-2024-47371

5.9
    WP MyLinks
Published: October 5, 2024

CVE-2024-47372

5.9
    TNC PDF viewer
Published: October 5, 2024

CVE-2024-47376

5.9
    Tribulant Slideshow Gallery
Published: October 5, 2024

CVE-2024-47377

5.9
    BuddyForms
Published: October 5, 2024

CVE-2024-47635

5.4
    TinyPNG
Published: October 5, 2024

CVE-2024-9528

4.9
    Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder
Published: October 5, 2024

CVE-2024-9146

4.9
    UNKNOWN
Published: October 5, 2024

CVE-2024-47840

4.8
    Wikimedia
  • Apex
Published: October 5, 2024

CVE-2024-47646

4.7
    Payflex Payment Gateway
Published: October 5, 2024

CVE-2024-47316

4.3
    Salon Booking System
Published: October 5, 2024

CVE-2024-47848

None
    Mediawiki - PageTriage
Published: October 5, 2024
Click here to see more Vulnerabilities