Lucene search
K

83 matches found

The Hacker News
The Hacker News
added 4 days ago14 views

Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker

U.S. prosecutors linked an alleged Scattered Spider hacker to a break-in at a luxury jewelry retailer using a persistent Windows device ID, according to a newly unsealed federal complaint. Microsoft records tied that ID first to the account the attackers used to keep access during the May 2025...

6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/06 7:54 a.m.5 views

CVE-2026-28016

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Luxury Wine luxury-wine allows PHP Local File Inclusion.This issue affects Luxury Wine: from n/a through = 1.1.14...

8.1CVSS5.8AI score0.00403EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/05 6:30 a.m.4 views

EUVD-2026-9678

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Luxury Wine luxury-wine allows PHP Local File Inclusion.This issue affects Luxury Wine: from n/a through = 1.1.14...

5.9AI score0.00403EPSS
Exploits0References2
NVD
NVD
added 2026/03/05 6:16 a.m.4 views

CVE-2026-28016

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Luxury Wine luxury-wine allows PHP Local File Inclusion.This issue affects Luxury Wine: from n/a through = 1.1.14...

8.1CVSS0.00403EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/05 5:54 a.m.43 views

CVE-2026-28016 WordPress Luxury Wine theme <= 1.1.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Luxury Wine luxury-wine allows PHP Local File Inclusion.This issue affects Luxury Wine: from n/a through = 1.1.14...

8.1CVSS0.00403EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/05 5:54 a.m.2 views

CVE-2026-28016 WordPress Luxury Wine theme <= 1.1.14 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Luxury Wine luxury-wine allows PHP Local File Inclusion.This issue affects Luxury Wine: from n/a through = 1.1.14...

8.1CVSS5.8AI score0.00403EPSS
Exploits0References1
CVE
CVE
added 2026/03/05 5:54 a.m.6 views

CVE-2026-28016

CVE-2026-28016 is a WordPress ThemeREX Luxury Wine vulnerability: Local File Inclusion due to improper filename handling in PHP include/require. Affected: luxury-wine up to version 1.1.14. Public details from Wordfence indicate no patch is available yet (unpatched) and exploitation could be possi...

8.1CVSS5.9AI score0.00403EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/05 5:54 a.m.4 views

CVE-2026-28016

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Luxury Wine luxury-wine allows PHP Local File Inclusion.This issue affects Luxury Wine: from n/a through = 1.1.14...

5.9AI score0.00403EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.8 views

WordPress plugin Luxury Wine 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.1CVSS5.8AI score0.00403EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.4 views

PT-2026-23298

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Luxury Wine luxury-wine allows PHP Local File Inclusion.This issue affects Luxury Wine: from n/a through = 1.1.14...

5.9AI score0.00403EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/03/02 11:33 a.m.3 views

WordPress Luxury Wine theme <= 1.1.14 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Bonds in WordPress Theme Luxury Wine versions = 1.1.14...

8.1CVSS5.9AI score0.00403EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/11/22 9:58 a.m.2 views

EUVD-2025-198547

Malicious code in airbnb-luxury-messaging npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/22 9:58 a.m.5 views

Malicious code in airbnb-luxury-messaging (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3721ccc0b94a8795edd99efa6ea640102c705346c6270a7ac203911797eaa7e The package airbnb-luxury-messaging was found to contain malicious code. Source: ossf-package-analysis...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/22 9:58 a.m.2 views

MAL-2025-190602 Malicious code in airbnb-luxury-messaging (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3721ccc0b94a8795edd99efa6ea640102c705346c6270a7ac203911797eaa7e The package airbnb-luxury-messaging was found to contain malicious code. Source: ossf-package-analysis...

6.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2025/11/17 6:28 p.m.7 views

A Perfect Storm: DDoS Attack Hits Turkish Luxury Retailer During Fall Collection Launch

When high-stakes events meet unprecedented attack volumes, disruption can be devastating. A Turkish luxury retail platform experienced this firsthand when it was hit with a record-breaking application-layer DDoS attack, peaking at 14.2 million requests per second RPS. This marks the largest DDoS...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/10/19 6:13 a.m.11 views

Europol Dismantles SIM Farm Network Powering 49 Million Fake Accounts Worldwide

Europol on Friday announced the disruption of a sophisticated cybercrime-as-a-service CaaS platform that operated a SIM farm and enabled its customers to carry out a broad spectrum of crimes ranging from phishing to investment fraud. The coordinated law enforcement effort, dubbed Operation...

7AI score
Exploits0
HackRead
HackRead
added 2025/05/02 4:11 p.m.12 views

UK Luxury Retailer Harrods Hit by Cyber Attack After M&S, Co-op

Luxury retailer Harrods confirms a cyber attack attempt, restricting internet access but keeping its online store running. Learn…...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/05/29 11:50 a.m.13 views

U.S. Sentences 31-Year-Old to 10 Years for Laundering $4.5M in Email Scams

The U.S. Department of Justice DoJ has sentenced a 31-year-old man to 10 years in prison for laundering more than $4.5 million through business email compromise BEC schemes and romance scams. Malachi Mullings, 31, of Sandy Springs, Georgia pleaded guilty to the money laundering offenses in Januar...

7.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2024/05/23 1:0 p.m.12 views

Cyber Signals: Inside the growing risk of gift card fraud

In the ever-evolving landscape of cyberthreats, staying ahead of malicious actors is a constant challenge. Microsoft Threat Intelligence has observed that gift cards are attractive targets for fraud and social engineering practices. Unlike credit or debit cards, there’s no customer name or bank...

7.5AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/04/09 10:4 a.m.3 views

bostonluxuryrealestate.com Cross Site Scripting vulnerability OBB-3911818

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rows per page
Query Builder