LeakIX
@leakix.bsky.social
Maintaining and reporting for LeakIX.
We are NOT affiliated with any ransomware campaign.
http://mastodon.social/@leakix
We are NOT affiliated with any ransomware campaign.
http://mastodon.social/@leakix
🚨 New plugin: N8nPlugin (CVE-2025-68613, CVE-2025-65964, CVE-2025-62726).
n8n Workflow Automation multiple vulnerabilities detection.
Results: https://leakix.net/search?q=%2Bplugin%3AN8nPlugin&scope=leak
n8n Workflow Automation multiple vulnerabilities detection.
Results: https://leakix.net/search?q=%2Bplugin%3AN8nPlugin&scope=leak
December 26, 2025 at 2:21 PM
🚨 New plugin: N8nPlugin (CVE-2025-68613, CVE-2025-65964, CVE-2025-62726).
n8n Workflow Automation multiple vulnerabilities detection.
Results: https://leakix.net/search?q=%2Bplugin%3AN8nPlugin&scope=leak
n8n Workflow Automation multiple vulnerabilities detection.
Results: https://leakix.net/search?q=%2Bplugin%3AN8nPlugin&scope=leak
🚨 New plugin: GeoserverXxePlugin (CVE-2025-58360).
GeoServer XXE vulnerability detection - XML External Entity injection in WMS GetMap operation, added to CISA KEV catalog.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverXxePlugin&scope=leak
GeoServer XXE vulnerability detection - XML External Entity injection in WMS GetMap operation, added to CISA KEV catalog.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverXxePlugin&scope=leak
December 12, 2025 at 9:17 AM
🚨 New plugin: GeoserverXxePlugin (CVE-2025-58360).
GeoServer XXE vulnerability detection - XML External Entity injection in WMS GetMap operation, added to CISA KEV catalog.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverXxePlugin&scope=leak
GeoServer XXE vulnerability detection - XML External Entity injection in WMS GetMap operation, added to CISA KEV catalog.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverXxePlugin&scope=leak
🚨 Plugin update: React2ShellPlugin (CVE-2025-55182).
Backdoor detection added - 16k+ Next.js servers detected with in-memory webshells allowing remote code execution.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AReact2ShellPlugin+%2Bdataset.infected%3Atrue
Backdoor detection added - 16k+ Next.js servers detected with in-memory webshells allowing remote code execution.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AReact2ShellPlugin+%2Bdataset.infected%3Atrue
December 9, 2025 at 2:02 PM
🚨 Plugin update: React2ShellPlugin (CVE-2025-55182).
Backdoor detection added - 16k+ Next.js servers detected with in-memory webshells allowing remote code execution.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AReact2ShellPlugin+%2Bdataset.infected%3Atrue
Backdoor detection added - 16k+ Next.js servers detected with in-memory webshells allowing remote code execution.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AReact2ShellPlugin+%2Bdataset.infected%3Atrue
🚨 New plugin: React2ShellPlugin (CVE-2025-55182).
React Server Components RCE vulnerability detection - Next.js applications affected by critical remote code execution vulnerabilities.
Results: https://leakix.net/search?page=0&q=%2Bplugin%3AReact2ShellPlugin&scope=leak
React Server Components RCE vulnerability detection - Next.js applications affected by critical remote code execution vulnerabilities.
Results: https://leakix.net/search?page=0&q=%2Bplugin%3AReact2ShellPlugin&scope=leak
December 5, 2025 at 8:49 AM
🚨 New plugin: React2ShellPlugin (CVE-2025-55182).
React Server Components RCE vulnerability detection - Next.js applications affected by critical remote code execution vulnerabilities.
Results: https://leakix.net/search?page=0&q=%2Bplugin%3AReact2ShellPlugin&scope=leak
React Server Components RCE vulnerability detection - Next.js applications affected by critical remote code execution vulnerabilities.
Results: https://leakix.net/search?page=0&q=%2Bplugin%3AReact2ShellPlugin&scope=leak
🚨 New plugin: EzGED3Plugin (CVE-2025-51539).
EzGED3 pre-authentication arbitrary file read vulnerability detection - may lead to admin takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AEzGED3Plugin&scope=leak
EzGED3 pre-authentication arbitrary file read vulnerability detection - may lead to admin takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AEzGED3Plugin&scope=leak
December 5, 2025 at 8:00 AM
🚨 New plugin: EzGED3Plugin (CVE-2025-51539).
EzGED3 pre-authentication arbitrary file read vulnerability detection - may lead to admin takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AEzGED3Plugin&scope=leak
EzGED3 pre-authentication arbitrary file read vulnerability detection - may lead to admin takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AEzGED3Plugin&scope=leak
🚨 New plugin: FreePBXPlugin (CVE-2025-57819).
FreePBX unauthenticated SQL injection vulnerability detection - may lead to RCE.
Results: https://leakix.net/search?q=%2Bplugin%3AFreePBXPlugin&scope=leak
FreePBX unauthenticated SQL injection vulnerability detection - may lead to RCE.
Results: https://leakix.net/search?q=%2Bplugin%3AFreePBXPlugin&scope=leak
December 4, 2025 at 8:00 AM
🚨 New plugin: FreePBXPlugin (CVE-2025-57819).
FreePBX unauthenticated SQL injection vulnerability detection - may lead to RCE.
Results: https://leakix.net/search?q=%2Bplugin%3AFreePBXPlugin&scope=leak
FreePBX unauthenticated SQL injection vulnerability detection - may lead to RCE.
Results: https://leakix.net/search?q=%2Bplugin%3AFreePBXPlugin&scope=leak
🚨 New plugin: TraccarPlugin (CVE-2025-61666).
Traccar local file inclusion vulnerability detection - may expose configuration files.
Results: https://leakix.net/search?q=%2Bplugin%3ATraccarPlugin&scope=leak
Traccar local file inclusion vulnerability detection - may expose configuration files.
Results: https://leakix.net/search?q=%2Bplugin%3ATraccarPlugin&scope=leak
December 3, 2025 at 8:00 AM
🚨 New plugin: TraccarPlugin (CVE-2025-61666).
Traccar local file inclusion vulnerability detection - may expose configuration files.
Results: https://leakix.net/search?q=%2Bplugin%3ATraccarPlugin&scope=leak
Traccar local file inclusion vulnerability detection - may expose configuration files.
Results: https://leakix.net/search?q=%2Bplugin%3ATraccarPlugin&scope=leak
🚨 New plugin: KestrelPlugin (CVE-2025-55315).
Kestrel HTTP request smuggling vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AKestrelPlugin&scope=leak
Kestrel HTTP request smuggling vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AKestrelPlugin&scope=leak
December 2, 2025 at 8:00 AM
🚨 New plugin: KestrelPlugin (CVE-2025-55315).
Kestrel HTTP request smuggling vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AKestrelPlugin&scope=leak
Kestrel HTTP request smuggling vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AKestrelPlugin&scope=leak
🚨 New plugin: XWikiPlugin (CVE-2025-24893, CVE-2025-32429, CVE-2025-52472, CVE-2025-55748).
XWiki multiple critical vulnerabilities detection - RCE, SQL/HQL injection, and path traversal.
Results: https://leakix.net/search?q=%2Bplugin%3AXWikiPlugin&scope=leak
XWiki multiple critical vulnerabilities detection - RCE, SQL/HQL injection, and path traversal.
Results: https://leakix.net/search?q=%2Bplugin%3AXWikiPlugin&scope=leak
December 1, 2025 at 8:00 AM
🚨 New plugin: XWikiPlugin (CVE-2025-24893, CVE-2025-32429, CVE-2025-52472, CVE-2025-55748).
XWiki multiple critical vulnerabilities detection - RCE, SQL/HQL injection, and path traversal.
Results: https://leakix.net/search?q=%2Bplugin%3AXWikiPlugin&scope=leak
XWiki multiple critical vulnerabilities detection - RCE, SQL/HQL injection, and path traversal.
Results: https://leakix.net/search?q=%2Bplugin%3AXWikiPlugin&scope=leak
🚨 New plugin: FlowiseVersionPlugin.
Flowise vulnerability detection - detects 15+ CVEs including RCE, file upload, and SSRF vulnerabilities.
Results: https://leakix.net/search?q=%2Bplugin%3AFlowiseVersionPlugin&scope=leak
Flowise vulnerability detection - detects 15+ CVEs including RCE, file upload, and SSRF vulnerabilities.
Results: https://leakix.net/search?q=%2Bplugin%3AFlowiseVersionPlugin&scope=leak
November 27, 2025 at 8:00 AM
🚨 New plugin: FlowiseVersionPlugin.
Flowise vulnerability detection - detects 15+ CVEs including RCE, file upload, and SSRF vulnerabilities.
Results: https://leakix.net/search?q=%2Bplugin%3AFlowiseVersionPlugin&scope=leak
Flowise vulnerability detection - detects 15+ CVEs including RCE, file upload, and SSRF vulnerabilities.
Results: https://leakix.net/search?q=%2Bplugin%3AFlowiseVersionPlugin&scope=leak
🚨 New plugin: WazuhPlugin (CVE-2025-24016).
Wazuh default credentials and RCE vulnerability detection - RCE possible on multi-node configurations, versions 4.4.0 to 4.9.1 affected.
Results: https://leakix.net/search?q=%2Bplugin%3AWazuhPlugin&scope=leak
Wazuh default credentials and RCE vulnerability detection - RCE possible on multi-node configurations, versions 4.4.0 to 4.9.1 affected.
Results: https://leakix.net/search?q=%2Bplugin%3AWazuhPlugin&scope=leak
November 26, 2025 at 8:00 AM
🚨 New plugin: WazuhPlugin (CVE-2025-24016).
Wazuh default credentials and RCE vulnerability detection - RCE possible on multi-node configurations, versions 4.4.0 to 4.9.1 affected.
Results: https://leakix.net/search?q=%2Bplugin%3AWazuhPlugin&scope=leak
Wazuh default credentials and RCE vulnerability detection - RCE possible on multi-node configurations, versions 4.4.0 to 4.9.1 affected.
Results: https://leakix.net/search?q=%2Bplugin%3AWazuhPlugin&scope=leak
🚨 New plugin: ICTBroadcastRcePlugin (CVE-2025-2611).
ICTBroadcast unauthenticated RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AICTBroadcastRcePlugin&scope=leak
ICTBroadcast unauthenticated RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AICTBroadcastRcePlugin&scope=leak
November 25, 2025 at 8:00 AM
🚨 New plugin: ICTBroadcastRcePlugin (CVE-2025-2611).
ICTBroadcast unauthenticated RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AICTBroadcastRcePlugin&scope=leak
ICTBroadcast unauthenticated RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AICTBroadcastRcePlugin&scope=leak
🚨 New plugin: SpipRcePlugin (CVE-2024-8517).
SPIP BigUp plugin pre-authentication RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3ASpipRcePlugin&scope=leak
SPIP BigUp plugin pre-authentication RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3ASpipRcePlugin&scope=leak
November 24, 2025 at 8:00 AM
🚨 New plugin: SpipRcePlugin (CVE-2024-8517).
SPIP BigUp plugin pre-authentication RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3ASpipRcePlugin&scope=leak
SPIP BigUp plugin pre-authentication RCE vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3ASpipRcePlugin&scope=leak
🚨 New plugin: ViciboxVersionPlugin (CVE-2024-8503, CVE-2024-8504).
VICIdial outdated version detection - unauthenticated SQL injection and authenticated RCE, versions <= 2.14-917a affected.
Results: https://leakix.net/search?q=%2Bplugin%3AViciboxVersionPlugin&scope=leak
VICIdial outdated version detection - unauthenticated SQL injection and authenticated RCE, versions <= 2.14-917a affected.
Results: https://leakix.net/search?q=%2Bplugin%3AViciboxVersionPlugin&scope=leak
November 21, 2025 at 8:00 AM
🚨 New plugin: ViciboxVersionPlugin (CVE-2024-8503, CVE-2024-8504).
VICIdial outdated version detection - unauthenticated SQL injection and authenticated RCE, versions <= 2.14-917a affected.
Results: https://leakix.net/search?q=%2Bplugin%3AViciboxVersionPlugin&scope=leak
VICIdial outdated version detection - unauthenticated SQL injection and authenticated RCE, versions <= 2.14-917a affected.
Results: https://leakix.net/search?q=%2Bplugin%3AViciboxVersionPlugin&scope=leak
🚨 New plugin: NCentralPlugin (CVE-2025-9316, CVE-2025-11700).
N-able N-Central session bypass and XXE vulnerability detection - XXE allows reading critical files.
Results: https://leakix.net/search?q=%2Bplugin%3ANCentralPlugin&scope=leak
N-able N-Central session bypass and XXE vulnerability detection - XXE allows reading critical files.
Results: https://leakix.net/search?q=%2Bplugin%3ANCentralPlugin&scope=leak
November 20, 2025 at 3:01 PM
🚨 New plugin: NCentralPlugin (CVE-2025-9316, CVE-2025-11700).
N-able N-Central session bypass and XXE vulnerability detection - XXE allows reading critical files.
Results: https://leakix.net/search?q=%2Bplugin%3ANCentralPlugin&scope=leak
N-able N-Central session bypass and XXE vulnerability detection - XXE allows reading critical files.
Results: https://leakix.net/search?q=%2Bplugin%3ANCentralPlugin&scope=leak
🚨 New plugin: MagentoXxePlugin (CVE-2024-34102, CosmicSting).
Magento XXE injection vulnerability detection - may expose sensitive files, RCE possible in some cases.
Results: https://leakix.net/search?q=%2Bplugin%3AMagentoXxePlugin&scope=leak
Magento XXE injection vulnerability detection - may expose sensitive files, RCE possible in some cases.
Results: https://leakix.net/search?q=%2Bplugin%3AMagentoXxePlugin&scope=leak
November 20, 2025 at 8:00 AM
🚨 New plugin: MagentoXxePlugin (CVE-2024-34102, CosmicSting).
Magento XXE injection vulnerability detection - may expose sensitive files, RCE possible in some cases.
Results: https://leakix.net/search?q=%2Bplugin%3AMagentoXxePlugin&scope=leak
Magento XXE injection vulnerability detection - may expose sensitive files, RCE possible in some cases.
Results: https://leakix.net/search?q=%2Bplugin%3AMagentoXxePlugin&scope=leak
🚨 Plugin update: PaloAltoPlugin (CVE-2024-3400, CVE-2025-0133).
PaloAlto PAN-OS XSS vulnerability detection added - GlobalProtect portal affected.
Results: https://leakix.net/search?q=%2Bplugin%3APaloAltoPlugin&scope=leak
PaloAlto PAN-OS XSS vulnerability detection added - GlobalProtect portal affected.
Results: https://leakix.net/search?q=%2Bplugin%3APaloAltoPlugin&scope=leak
November 19, 2025 at 8:00 AM
🚨 Plugin update: PaloAltoPlugin (CVE-2024-3400, CVE-2025-0133).
PaloAlto PAN-OS XSS vulnerability detection added - GlobalProtect portal affected.
Results: https://leakix.net/search?q=%2Bplugin%3APaloAltoPlugin&scope=leak
PaloAlto PAN-OS XSS vulnerability detection added - GlobalProtect portal affected.
Results: https://leakix.net/search?q=%2Bplugin%3APaloAltoPlugin&scope=leak
🚨 New plugin: GeoserverRcePlugin (CVE-2024-36401).
GeoServer RCE vulnerability detection via GetPropertyValue in WFS requests.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverRcePlugin&scope=leak
GeoServer RCE vulnerability detection via GetPropertyValue in WFS requests.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverRcePlugin&scope=leak
November 18, 2025 at 8:00 AM
🚨 New plugin: GeoserverRcePlugin (CVE-2024-36401).
GeoServer RCE vulnerability detection via GetPropertyValue in WFS requests.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverRcePlugin&scope=leak
GeoServer RCE vulnerability detection via GetPropertyValue in WFS requests.
Results: https://leakix.net/search?q=%2Bplugin%3AGeoserverRcePlugin&scope=leak
🚨 New plugin: SwaggerUIPlugin.
Swagger API documentation public exposure detection - may expose API endpoints, parameters, and data structures.
Results: https://leakix.net/search?q=%2Bplugin%3ASwaggerUIPlugin&scope=leak
Swagger API documentation public exposure detection - may expose API endpoints, parameters, and data structures.
Results: https://leakix.net/search?q=%2Bplugin%3ASwaggerUIPlugin&scope=leak
November 17, 2025 at 8:00 AM
🚨 New plugin: SwaggerUIPlugin.
Swagger API documentation public exposure detection - may expose API endpoints, parameters, and data structures.
Results: https://leakix.net/search?q=%2Bplugin%3ASwaggerUIPlugin&scope=leak
Swagger API documentation public exposure detection - may expose API endpoints, parameters, and data structures.
Results: https://leakix.net/search?q=%2Bplugin%3ASwaggerUIPlugin&scope=leak
🚨 New plugin: PrometheusPlugin.
Prometheus server public exposure detection - may expose metrics, configuration, and infrastructure information.
Results: https://leakix.net/search?q=%2Bplugin%3APrometheusPlugin&scope=leak
Prometheus server public exposure detection - may expose metrics, configuration, and infrastructure information.
Results: https://leakix.net/search?q=%2Bplugin%3APrometheusPlugin&scope=leak
November 14, 2025 at 8:00 AM
🚨 New plugin: PrometheusPlugin.
Prometheus server public exposure detection - may expose metrics, configuration, and infrastructure information.
Results: https://leakix.net/search?q=%2Bplugin%3APrometheusPlugin&scope=leak
Prometheus server public exposure detection - may expose metrics, configuration, and infrastructure information.
Results: https://leakix.net/search?q=%2Bplugin%3APrometheusPlugin&scope=leak
🚨 New plugin: GraphQLIntrospectionPlugin.
GraphQL introspection enabled detection - may expose sensitive schema information and database structures.
Results: https://leakix.net/search?q=%2Bplugin%3AGraphQLIntrospectionPlugin&scope=leak
GraphQL introspection enabled detection - may expose sensitive schema information and database structures.
Results: https://leakix.net/search?q=%2Bplugin%3AGraphQLIntrospectionPlugin&scope=leak
November 13, 2025 at 8:00 AM
🚨 New plugin: GraphQLIntrospectionPlugin.
GraphQL introspection enabled detection - may expose sensitive schema information and database structures.
Results: https://leakix.net/search?q=%2Bplugin%3AGraphQLIntrospectionPlugin&scope=leak
GraphQL introspection enabled detection - may expose sensitive schema information and database structures.
Results: https://leakix.net/search?q=%2Bplugin%3AGraphQLIntrospectionPlugin&scope=leak
🚨 New plugin: WatchGuardFireboxPlugin (CVE-2025-59396).
WatchGuard Firebox default credentials allow administrative SSH access. CVE rejected by NVD: "Not a security vulnerability".
Results: https://leakix.net/search?q=%2Bplugin%3AWatchGuardFireboxPlugin&scope=leak
WatchGuard Firebox default credentials allow administrative SSH access. CVE rejected by NVD: "Not a security vulnerability".
Results: https://leakix.net/search?q=%2Bplugin%3AWatchGuardFireboxPlugin&scope=leak
November 12, 2025 at 3:41 PM
🚨 New plugin: WatchGuardFireboxPlugin (CVE-2025-59396).
WatchGuard Firebox default credentials allow administrative SSH access. CVE rejected by NVD: "Not a security vulnerability".
Results: https://leakix.net/search?q=%2Bplugin%3AWatchGuardFireboxPlugin&scope=leak
WatchGuard Firebox default credentials allow administrative SSH access. CVE rejected by NVD: "Not a security vulnerability".
Results: https://leakix.net/search?q=%2Bplugin%3AWatchGuardFireboxPlugin&scope=leak
🚨 New plugin: GladinetPlugin (CVE-2025-11371, CVE-2025-30406, CVE-2025-12480).
Gladinet CentreStack/Triofox LFI, RCE, and auth bypass vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AGladinetPlugin&scope=leak
Gladinet CentreStack/Triofox LFI, RCE, and auth bypass vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AGladinetPlugin&scope=leak
November 12, 2025 at 3:09 PM
🚨 New plugin: GladinetPlugin (CVE-2025-11371, CVE-2025-30406, CVE-2025-12480).
Gladinet CentreStack/Triofox LFI, RCE, and auth bypass vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AGladinetPlugin&scope=leak
Gladinet CentreStack/Triofox LFI, RCE, and auth bypass vulnerability detection.
Results: https://leakix.net/search?q=%2Bplugin%3AGladinetPlugin&scope=leak
🚨 New plugin: GLPIVersionPlugin.
GLPI vulnerability detection - detects 50+ CVEs including unauthenticated SQL injection, session hijacking, and account takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AGLPIVersionPlugin&scope=leak
GLPI vulnerability detection - detects 50+ CVEs including unauthenticated SQL injection, session hijacking, and account takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AGLPIVersionPlugin&scope=leak
November 12, 2025 at 8:00 AM
🚨 New plugin: GLPIVersionPlugin.
GLPI vulnerability detection - detects 50+ CVEs including unauthenticated SQL injection, session hijacking, and account takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AGLPIVersionPlugin&scope=leak
GLPI vulnerability detection - detects 50+ CVEs including unauthenticated SQL injection, session hijacking, and account takeover.
Results: https://leakix.net/search?q=%2Bplugin%3AGLPIVersionPlugin&scope=leak
🚨 New plugin: MonstaFtpVersionPlugin (CVE-2025-34299).
MonstaFTP RCE vulnerability detection - versions < 2.11.3 affected.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AMonstaFtpVersionPlugin
MonstaFTP RCE vulnerability detection - versions < 2.11.3 affected.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AMonstaFtpVersionPlugin
November 7, 2025 at 3:03 PM
🚨 New plugin: MonstaFtpVersionPlugin (CVE-2025-34299).
MonstaFTP RCE vulnerability detection - versions < 2.11.3 affected.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AMonstaFtpVersionPlugin
MonstaFTP RCE vulnerability detection - versions < 2.11.3 affected.
Results: https://leakix.net/search?scope=leak&q=%2Bplugin%3AMonstaFtpVersionPlugin