Today > vulnerabilities - You can now download lists of IOCs here!

Tag: 2024-11-16

3 attack reports | 50 vulnerabilities

Attack reports

Fake AI video generators infect Windows, macOS with infostealers

Threat actors are using fake AI image and video generators to distribute Lumma Stealer and AMOS information-stealing malware on Windows and macOS. These malicious programs masquerade as an AI application called EditProAI, targeting users through search results and social media advertisements. The m…

social engineering

credential theft

Published: November 16, 2024

Downloadable IOCs 0

Weaponizing FortiClient Vulnerability to Steal VPN Credentials via DEEPDATA

A Chinese state-affiliated threat actor, BrazenBamboo, has exploited a zero-day vulnerability in Fortinet's Windows VPN client to steal user credentials. The vulnerability allows extraction of login information from the FortiClient process memory. BrazenBamboo uses two malware families: DEEPDATA, a…

credential theft

post-exploitation

chinese threat actor

Published: November 16, 2024

Downloadable IOCs 0

Glove Stealer bypasses Chrome's App-Bound Encryption to steal cookies

Researchers have discovered a new .NET-based information stealer called Glove Stealer that targets browser extensions and local software to steal sensitive data like cookies, passwords, and cryptocurrency wallets. It uses a novel technique to bypass Chrome's App-Bound encryption by exploiting the I…

information stealer

encryption bypass

Published: November 16, 2024

Downloadable IOCs 0

» Click here to see all Attack Reports «

Vulnerabilities

CVE-2024-52416

Published: November 16, 2024

CVE-2024-52399

Clarisse K. Writer Helper

Published: November 16, 2024

CVE-2024-52400

Published: November 16, 2024

CVE-2024-52403

WPExperts User Management

Published: November 16, 2024

CVE-2024-52404

Bigfive CF7 Reply Manager

Published: November 16, 2024

CVE-2024-52405

B-Banner Slider

Published: November 16, 2024

CVE-2024-52406

Wibergs Web CSV to html

Published: November 16, 2024

CVE-2024-52407

BasePress Migration Tools

Published: November 16, 2024

CVE-2024-52408

Team PushAssist Push Notifications for WordPress by PushAssist

Published: November 16, 2024

CVE-2024-8856

Backup and Staging by WP Time Capsule plugin for WordPress

Published: November 16, 2024

CVE-2024-52409

Phan An AJAX Random Posts

Published: November 16, 2024

CVE-2024-52410

Referrer Detector

Published: November 16, 2024

CVE-2024-52411

Flowcraft UX Design Studio Advanced Personalization

Published: November 16, 2024

CVE-2024-52412

Stephen Cui Xin

Published: November 16, 2024

CVE-2024-52413

Published: November 16, 2024

CVE-2024-52414

Anthony Carbon WDES Responsive Mobile Menu

Published: November 16, 2024

CVE-2024-52398

Published: November 16, 2024

CVE-2024-52397

Convert Docx2post

Published: November 16, 2024

CVE-2024-9192

WordPress Video Robot - The Ultimate Video Importer plugin

Published: November 16, 2024

CVE-2024-9849

3D FlipBook, PDF Viewer, PDF Embedder – Real 3D FlipBook WordPress Plugin

Published: November 16, 2024

CVE-2024-10728

Post Grid Gutenberg Blocks and WordPress Blog Plugin - PostX

Published: November 16, 2024

CVE-2024-52415

SK WP Settings Backup

Published: November 16, 2024

CVE-2024-9935

Elementor Page Builder plugin for WordPress

Published: November 16, 2024

CVE-2024-10645

WordPress Blogger 301 Redirect plugin

Published: November 16, 2024

CVE-2024-9839

Uix Slideshow plugin for WordPress

Published: November 16, 2024

CVE-2024-9887

Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress

Published: November 16, 2024

CVE-2024-10015

ConvertCalculator for WordPress plugin

Published: November 16, 2024

CVE-2024-10017

PJW Mime Config plugin for WordPress

Published: November 16, 2024

CVE-2024-10147

Steel plugin for WordPress

Published: November 16, 2024

CVE-2024-11092

SVGPlus plugin for WordPress

Published: November 16, 2024

CVE-2024-9386

Exclusive Divi – Divi Preloader, Modules for Divi & Extra Theme plugin for WordPress

Published: November 16, 2024

CVE-2024-9850

WordPress SVG Case Study plugin

Published: November 16, 2024

CVE-2024-10592

Mapster WP Maps plugin for WordPress

Published: November 16, 2024

CVE-2024-10262

Drop Shadow Boxes plugin for WordPress

Published: November 16, 2024

CVE-2024-10875

Gallery Manager plugin for WordPress

Published: November 16, 2024

CVE-2024-10883

SimpleForm - Contact form made simple plugin for WordPress

Published: November 16, 2024

CVE-2024-10884

SimpleForm Contact Form Submissions plugin for WordPress

Published: November 16, 2024

CVE-2024-8873

PeproDev WooCommerce Receipt Uploader plugin for WordPress

Published: November 16, 2024

CVE-2024-9615

BulkPress plugin for WordPress

Published: November 16, 2024

CVE-2024-9938

Bounce Handler MailPoet 3 plugin for WordPress

Published: November 16, 2024

CVE-2024-11085

WP Log Viewer plugin for WordPress

Published: November 16, 2024

CVE-2024-10861

Popup Box - Create Countdown, Coupon, Video, Contact Form Popups plugin for WordPress

Published: November 16, 2024

CVE-2024-11118

WordPress 404 Error Monitor plugin

Published: November 16, 2024

CVE-2024-11094

404 Solution plugin for WordPress

Published: November 16, 2024

CVE-2024-52386

Classified Listing by RadiusTheme

Published: November 16, 2024

CVE-2024-10786

Simple Local Avatars plugin for WordPress

Published: November 16, 2024

CVE-2024-10795

Popularis Extra plugin for WordPress

Published: November 16, 2024

CVE-2024-10533

WP Chat App plugin for WordPress

Published: November 16, 2024

CVE-2024-6628

EleForms – All In One Form Integration including DB for Elementor plugin for WordPress

Published: November 16, 2024

CVE-2024-10614

Customer Reviews for WooCommerce plugin

Published: November 16, 2024

» Click here to see all Vulnerabilities «