⚠️⚠️ CVE-2024-7988 (CVSS 9.8): Rockwell Automation’s ThinManager Flaw Allows RCE 🎯893 Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="Rockwell-Automation" Refer🔖: securityonline.info/cve-2024-7988-… #OSINT #FOFA

⚠️⚠️CVE-2024-43425: Moodle Remote Code Execution Vulnerability, PoC Published PoC:blog.redteam-pentesting.de/2024/moodle-rc… 🎯546k Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="Moodle" Refer🔖: securityonline.info/cve-2024-43425… #OSINT

#Fofa Query for #Russia's #StarBlizzard's #COLDWASTREL Infra Query: header_hash="-1692967738" && server=="nginx/1.18.0" && asn="206804" Link: t.ly/AjlxL Infra: pastebin.com/tbqAzCYA Mikhail Kasimov #Malware #ioc Spl thanks to Chris Duggan for initial observations.

⚠️⚠️ CVE-2024-43044 Arbitrary file read vulnerability PoC🔥: github.com/convisolabs/CV… Refer🔖: blog.convisoappsec.com/en/analysis-of… #vulnerability #OSINT #FOFA

Another large phishing campaign exposed with FofaBot Query: icon_hash="2091075953" || icon_hash="119993459" Link🔗en.fofa.info/result?qbase64… correiosrastreamentoalfandegario[.]com rastreamentoseguro[.]com rastreamentoalfandegabr[.]com retireseupedido[.]site Correios CERT.br

⚠️⚠️ CVE-2024-7029 in AvTech Devices: Enabling RCE, Vulnerability Scanning, and Interactive Shell 🔥PoC:github.com/ebrasha/CVE-20… 🎯4m+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="AVTECH-Video-Monitoring"

⚠️ CVE-2024-7593: Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability 🎯490+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="Virtual-Traffic-Manager" Refer🔖: tenable.com/blog/cve-2024-… #OSINT

⚠️⚠️ CVE-2024-2169: Webmin/Virtualmin Vulnerability Opens Door to Loop DoS Attacks 🎯517k+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="Virtualmin" || app="webmin" Refer🔖: securityonline.info/webmin-virtual… #OSINT

⚠️⚠️ MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections 🔥PoC: github.com/mindsdb/mindsd… 🎯546+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="MindsDB" Refer🔖:

⚠️⚠️ CVE-2024-5932 (CVSS 10): Critical RCE Vulnerability Impacts GiveWP Wordpress plugin 🔥PoC: github.com/EQSTLab/CVE-20… #OSINT #FOFA

⚠️⚠️ Critical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution 🎯276k+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="Kibana" Refer🔖: securityonline.info/critical-kiban… #OSINT

⚠️⚠️ CVE-2024-43102  (CVSS 10) FreeBSD Issues Urgent Security Advisory 🎯1m+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="freeBSD" Refer🔖: securityonline.info/freebsd-issues… #OSINT #FOFA

⚠️⚠️ CVE-2024-45507 Apache Ofbiz SSRF to RCE 🎯2.7k+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="Apache_OFBiz" Refer🔖: nvd.nist.gov/vuln/detail/CV… #OSINT #FOFA

⚠️⚠️ GitLab Issues Critical Security Patch for CVE-2024-6678 (CVSS 9.9), Urges Immediate Update 🎯379k+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="GitLab" Refer🔖: securityonline.info/gitlab-issues-… #OSINT #FOFA

⚠️⚠️CVE-2024-8522 (CVSS 10): LearnPress SQLi Flaw WordPress Sites at Risk 🎯32k+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:body="/wp-content/plugins/learnpress" Refer🔖: securityonline.info/cve-2024-8522-… #OSINT #FOFA

Relevant #Fofabot Query for #APT34 / #OilRig #APT infra recently documented by Check Point Research regarding "Iranian attacks against Iraqi Govt" at t.ly/JmtgN. #Query: title=="good_news_site" #Link: t.ly/p4q_4 #Malware #ioc

⚠️⚠️ CVE-2024-7889 and CVE-2024-7890 in Citrix Workspace These vulnerabilities could allow a malicious actor with low-level access to escalate their privileges to the highest level (SYSTEM), potentially taking complete control of a compromised system. 🎯177+ Results are found

New wave of #Pakistan's #SideCopy #APT targeting #Indian Govt. #Fofabot Query: title=="Supreme Court of India | India" Link: t.ly/we4Ug Infra: pastebin.com/D5w377jL Mikhail Kasimov #Malware #ioc

⚠️⚠️ Critical Flaws in Red Hat OpenShift: CVE-2024-45496 (CVSS 9.9) & CVE-2024-7387 (CVSS 9.1) 🎯114+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:app="OpenShift-Web-Console" Refer🔖: securityonline.info/flaws-in-red-h…

⚠️⚠️ CVE-2024-23692 Unauthenticated RCE Flaw in Rejetto HTTP File Server 🔥Poc: github.com/verylazytech/C… 🎯23k+ Results are found on the en.fofa.info nearly year. FOFA Link🔗:en.fofa.info/result?qbase64… FOFA Query:"HttpFileServer" && server=="HFS 2.3m" #OSINT #FOFA