New DynoWiper Malware Used in Attempted Sandworm Attack on Polish Power Sector

The Russian nation-state hacking group known as Sandworm has been attributed to what has been described as the "largest cyber attack" targeting Poland's power system in the last week of December 2025. The attack was unsuccessful, the country's energy minister, Milosz Motyka, said last week. "The...

CVE-2024-56744

creationtimestamp| type| source ---|---|--- 2024-12-29 12:16:02+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3legyogm3zn22 2024-12-29 12:40:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113736155699380786 2024-12-29 14:02:26+00:00| seen|...

GHSA-4J8W-P6HV-3QXC

creationtimestamp| type| source ---|---|--- 2023-12-29 20:46:41+00:00| seen| https://t.me/ctinow/160674...

znora.eu Improper Access Control vulnerability OBB-3826321

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

vinopersonalizado.es Improper Access Control vulnerability OBB-3826234

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

tmvtalleresmecanicos.es Improper Access Control vulnerability OBB-3826070

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

vharmonika.com Cross Site Scripting vulnerability OBB-3825706

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

woken.com.tw Cross Site Scripting vulnerability OBB-3825645

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

pizza-taxi-24.de Cross Site Scripting vulnerability OBB-3825598

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-28786

creationtimestamp| type| source ---|---|--- 2023-12-29 11:26:19+00:00| seen| https://t.me/ctinow/160424 2023-12-30 01:36:25+00:00| seen| https://t.me/cibsecurity/73922...

GHSA-FXF5-C62C-5F69

creationtimestamp| type| source ---|---|--- 2023-12-29 10:28:32+00:00| seen| https://t.me/arpsyndicate/2234...

CVE-2023-51426

creationtimestamp| type| source ---|---|--- 2023-12-29 05:26:49+00:00| seen| https://t.me/ctinow/160329 2023-12-30 01:33:17+00:00| seen| https://t.me/cibsecurity/73884 2024-01-20 17:47:03+00:00| seen| https://t.me/ctinow/170685...

rbcinstalaciones.es Improper Access Control vulnerability OBB-3825344

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

r3s.es Improper Access Control vulnerability OBB-3825324

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

pizzeriafirenze.es Improper Access Control vulnerability OBB-3825186

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2022-4846

creationtimestamp| type| source ---|---|--- 2022-12-29 20:13:18+00:00| seen| https://t.me/cibsecurity/55531 2025-04-10 16:49:26+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11273...

WordPress statfort Theme < 10 is vulnerable to Arbitrary File Upload

Software statfort Type Theme Vulnerable versions 10 Fixed in N/A OWASP Top 10 A6: Security Misconfiguration Classification Arbitrary File Upload CVE CVE-2022-0316 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 68bfdf44186f Credits Joshua Small Required privilege...

ecisd.us XSS vulnerability

Open Bug Bounty ID: OBB-715644 Description| Value ---|--- Affected Website:| ecisd.us Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden until...

bodybuilding.net Open Redirect vulnerability

Vulnerable URL: https://www.bodybuilding.net/redirect-to/?redirect=https%3A%2F%2Fopenbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 29.12.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 3837729 VIP website...

Threat Outbreak Alert RuleID27056: Email Messages Distributing Malicious Software on December 29, 2016

Medium Alert ID: 52235 First Published: 2017 January 3 14:11 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID27056 may contain the following files: Name |...