Aggregator

A vulnerability, which was classified as critical, has been found in CADImage Plugin on IrfanView. This issue affects some unknown processing of the component DWG File Parser. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2025-7244. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in CADImage Plugin on IrfanView. Affected is an unknown function of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2025-7246. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView. It has been declared as critical. This vulnerability affects unknown code of the component DWG File Parser. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2025-7252. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView. It has been rated as critical. This issue affects some unknown processing of the component DXF File Parser. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2025-7254. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in CADImage Plugin on IrfanView. Affected by this vulnerability is an unknown functionality of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability is known as CVE-2025-7253. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in CADImage Plugin on IrfanView. Affected by this issue is some unknown functionality of the component DXF File Parser. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2025-7256. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in CADImage Plugin on IrfanView. This affects an unknown part of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2025-7255. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView and classified as critical. This issue affects some unknown processing of the component DXF File Parser. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2025-7257. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView. It has been classified as critical. Affected is an unknown function of the component DWG File Parser. The manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2025-7258. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in CADImage Plugin on IrfanView. This issue affects some unknown processing of the component DWG File Parser. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2025-7251. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in CADImage Plugin on IrfanView. Affected is an unknown function of the component DWG File Parser. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2025-7250. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

火狐浏览器官网从Mozilla.org迁至Firefox.com，启用品牌域名。新网站更简洁，谋智基金会未解释迁移原因。其他浏览器如Chrome和Edge使用企业主域名下的子路径。

免责声明本文中所涉及的技术、思路仅为学习交流，由于传播、利用本公众号所提供的信息而造成的任何直接或者间接的后

当前环境异常，需完成验证后继续访问。

A sophisticated supply chain attack has compromised several widely-used npm packages, including eslint-config-prettier and eslint-plugin-prettier, after threat actors successfully stole maintainer authentication tokens through a targeted phishing campaign. The attack leveraged a typosquatted domain, npnjs.com, designed to mimic the legitimate npmjs.org site and harvest developer credentials through convincing phishing emails. The malicious campaign represents a […]

The post Threat Actors Hijack Popular npm Packages to Steal The Project Maintainers’ npm Tokens appeared first on Cyber Security News.

A vulnerability was found in CADImage Plugin on IrfanView. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability is known as CVE-2025-7241. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Coercer A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through many methods. Features  Automatically detects open SMB pipes on the remote machine.  Calls one by one all...

The post Coercer: automatically coerce a Windows server to authenticate on an arbitrary machine appeared first on Penetration Testing Tools.

万字长文，慎入！

当前环境异常，需完成验证后方可继续访问。

京东领投三家具身智能公司；Uber 接入微信，上线官方小程序；抖音上线电影评分功能