CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	[librenms/librenms] Librenms has a reflected XSS on error alert Description: XSS on the parameters:/addhost -> param: community of Librenms versions 24.10.1 (https://github.com/librenms/librenms) allows remote attackers to inject malicious scripts. When a user views or interacts with the page displaying the data, the malicious script executes immediately, leading to potential unauthorized actions or data exposure. Proof of Concept: Navigate to the /addhost path. Fill in all required fields. In the Community field, enter the following payload: "><img src=a onerror="alert(1)">. Submit the form to save changes. 5 The script will execute when the error alert "No reply with community + payload" appears. Impact: Execution of Malicious Code References https://github.com/librenms/librenms/security/advisories/GHSA-g84x-g96g-rcjc https://github.com/advisories/GHSA-g84x-g96g-rcjc Source: Github Advisory Database (Composer) January 16th, 2025 (6 months ago)
	Biden signs executive order to bolster national cybersecurity Description: Days before leaving office, President Joe Biden signed an executive order to shore up the United States' cybersecurity by making it easier to sanction hacking groups targeting federal agencies and the nation's critical infrastructure. [...] Source: BleepingComputer January 16th, 2025 (6 months ago)
	Enzo Biochem settles lawsuit over 2023 ransomware attack for $7.5M Source: TheRegister January 16th, 2025 (6 months ago)
	888 Has Allegedly Leaked the Data of NetSE Description: 888 Has Allegedly Leaked the Data of NetSE Source: DarkWebInformer January 16th, 2025 (6 months ago)
	Donald Trump Has Mark Zuckerberg By the Balls Description: A TikTok ban is a massive prize that Zuckerberg has been laying the groundwork on for years. Will Trump let him have it? Source: 404 Media January 16th, 2025 (6 months ago)
	A Threat Actor is Selling a Cookies Stealing Google Extension Description: A Threat Actor is Selling a Cookies Stealing Google Extension Source: DarkWebInformer January 16th, 2025 (6 months ago)
	Wolf Haldenstein law firm says 3.5 million impacted by data breach Description: Wolf Haldenstein Adler Freeman & Herz LLP ("Wolf Haldenstein") reports it has suffered a data breach that exposed the personal information of nearly 3.5 million individuals to hackers. [...] Source: BleepingComputer January 16th, 2025 (6 months ago)
	FTC sues GoDaddy for years of poor hosting security practices Description: The FTC will require web hosting giant GoDaddy to implement basic security protections, such as multi-factor authentication and HTTPS APIs, to settle charges that it failed to secure its hosting services against attacks since 2018. [...] Source: BleepingComputer January 16th, 2025 (6 months ago)
	Nokia’s Weird Y2K Designs Show the Future We Could Have Had Description: The Nokia Design Archive contains thousands of designs, pitch decks, presentations and prototypes from the turn of the millennium. Source: 404 Media January 16th, 2025 (6 months ago)
	Cybersecurity rethink - from reaction to resilience Source: TheRegister January 16th, 2025 (6 months ago)