Nov 8, 2021 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Froxlor: public exploit or PoC linked (SQL Injection)
  • WordPress plugin RCE/exploit activity: 3 CVEs flagged today.
  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2021-42325 Froxlor SQL Injection

  • Public exploit or PoC available
  • Exploit activity linked

Froxlor SQL Injection now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Active exploit activity

CVE-2021-43405 An issue was discovered in FusionPBX before 4.5.30.

  • Public exploit or PoC available
  • Exploit activity linked

Public exploit or PoC linked — exploitation bar is lower than disclosure-only CVEs.

Critical exposure

CVE-2021-24731 Genetechsolutions Pie Register SQL Injection

  • CVSS 9.8
  • Internet-facing CMS deployments affected

New critical Genetechsolutions Pie Register SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2021-43405 Exploit

An issue was discovered in FusionPBX before 4.5.30.

CVE-2021-42325 Exploit

Froxlor through 0.10.29.1 allows SQL injection in Database/Manager/DbManagerMySQL.php via a custom DB name.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

The Simple Download Monitor WordPress plugin before 3.9.5 does not escape the "File Thumbnail" post meta before outputting it in some pag...

CVE-2021-24731 CVSS 9.8

The Registration Forms – User profile, Content Restriction, Spam Protection, Payment Gateways, Invitation Codes WordPress plugin before 3...

CVE-2021-24827 CVSS 9.8

The Asgaros Forum WordPress plugin before 1.15.13 does not validate and escape user input when subscribing to a topic before using it in...

CVE-2021-25979 CVSS 9.8

Apostrophe CMS versions prior to 3.3.1 did not invalidate existing login sessions when disabling a user account or changing the password,...

CVE-2021-28023 CVSS 9.8

Arbitrary file upload in Service import feature in ServiceTonic Helpdesk software version < 9.0.35937 allows a malicious user to execute...

CVE-2021-28024 CVSS 9.8

Unauthorized system access in the login form in ServiceTonic Helpdesk software version < 9.0.35937 allows attacker to login without using...

CVE-2021-30132 CVSS 9.8

Cloudera Manager 7.2.4 has Incorrect Access Control, allowing Escalation of Privileges.

CVE-2021-41170 CVSS 9.8

neoan3-apps/template is a neoan3 minimal template engine.

CVE-2021-42371 CVSS 9.8

lpar2rrd is a hardcoded system account in XoruX LPAR2RRD and STOR2RRD before 7.30.

View critical disclosures

cvelogic Threat Intelligence