Aggregator

Submit #427426 / VDB-281675

A vulnerability classified as critical has been found in Red Hat 3scale API Management Platform 2. This affects an unknown part of the component APICast. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2024-10295. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in WP Recipe Maker Plugin up to 9.6.1 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument tooltip leads to cross site scripting. This vulnerability is handled as CVE-2024-9650. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Compact WP Audio Player Plugin up to 1.9.13 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function sc_embed_player of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-10176. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Contact Form 7 Plugin up to 2.0.1 on WordPress. It has been classified as problematic. Affected is the function field_group of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-10180. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Extra Product Options Builder for WooCommerce Plugin up to 1.2.133 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-9214. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in WP Adminify Plugin up to 4.0.1.6 on WordPress and classified as problematic. This vulnerability affects unknown code of the component SVG File Upload. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-8959. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in One Identity Safeguard for Privileged Sessions On Premise up to 7.0.5.0/7.5.0. This affects an unknown part of the component RDP. The manipulation leads to improper authentication. This vulnerability is uniquely identified as CVE-2024-40595. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Ученые выяснили, как ИИ оценивает риск повторных преступлений.

知名手表厂商卡西欧遭勒索攻击，系统瘫痪且恢复无进展，公司运营受到极大影响，交付严重延迟，财报也推迟了约一周发布。

lattice的HNP问题（从理论到实践）

2024源鲁杯round1-crypto题解

Classical Attacks on a Variant of the RSA Cryptosystem论文的赛题利用

windows下远程文件下载常见手法总结

源鲁杯ROUND2 Pwn题解

dark_finger二开

MySQL+JDBC链子分析

远控软件密码读取新思路

格密码基础入门（理论篇）

2024 0xGame Week1 密码 wp