Aggregator

六合引擎介绍长期以来，银狐（Ghost）、WinOS、PlugX、Cobalt Strike、Sliver、

A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0 and classified as critical. Impacted is an unknown function of the file /user/forget_password.php. Such manipulation of the argument email leads to sql injection. This vulnerability is traded as CVE-2025-9155. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/page-login.php. This manipulation of the argument email causes sql injection. This vulnerability appears as CVE-2025-9154. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability, which was classified as critical, was found in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. This vulnerability is reported as CVE-2025-9153. The attack can be launched remotely. Moreover, an exploit is present.

雷神众测拥有该文章的修改和解释权。如欲转载或传播此文章，必须保证此文章的副本，包括版权声明等全部内容。声明雷神众测允许，不得任意修改或增减此文章内容，不得以任何方式将其用于商业目的。

Submit #630274 / VDB-320536

Submit #630214 / VDB-289329

A vulnerability, which was classified as critical, has been found in Wiesemann & Theis Motherbox 3 up to 1.48. This affects an unknown part. The manipulation leads to missing authentication. This vulnerability is documented as CVE-2025-41689. The attack can be initiated remotely. There is not any exploit available.

A vulnerability classified as problematic was found in SMA ennexos.sunnyportal.com. Affected by this issue is some unknown functionality of the component Email Address Handler. Executing manipulation can lead to exposure of private personal information to an unauthorized actor. This vulnerability is registered as CVE-2025-41685. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is advised.

Submit #630202 / VDB-320535

Submit #630201 / VDB-320534

Submit #630200 / VDB-320533

A vulnerability classified as problematic has been found in Linux Kernel up to 6.15.4/6.16-rc3. This impacts an unknown function of the component LoongArch. The manipulation of the argument num_cpu leads to privilege escalation. This vulnerability is referenced as CVE-2025-38366. The attack needs to be initiated within the local network. No exploit is available. It is recommended to upgrade the affected component.

Аудит показал как полиция путает людей с преступниками.

How top-tier managed detection and response (MDR) can help organizations stay ahead of increasingly agile and determined adversaries

作者：MANISHA RAMCHARAN PRAJAPATI, SATYAM SINGH 原文链接：https://www.zscaler.com/blogs/security-research/supply-chain-risk-python-termncolor-and-colorinal-explained 引言 Zscaler ThreatLabz 持续监控我们的 Python 扫描...

Over 280,000 customers of Australian ISP iiNet have been impacted by a data breach

长期以来，银狐、PlugX、Cobalt Strike等被黑客广泛使用，且免杀手段日益复杂，传统的特征检测难以应对。基于天擎“六合”引擎已发现多起境外APT针对国内的全程无文件间谍活动，银狐等黑产木马更是不在话下。

A sophisticated new cyberthreat campaign has emerged that combines impersonation of trusted news sources with deceptive security verification prompts to trick users into executing malicious commands on their systems. According to a Reddit post, the ClickFix attack masquerades as legitimate BBC news content while employing fake Cloudflare verification screens to deliver malware. How the Attack Works The […]

The post New ClickFix Attack Uses Fake BBC News Page and Fraudulent Cloudflare Verification to Trick Users appeared first on Cyber Security News.

The U.S. Department of Justice has announced the seizure of more than $2.8 million in cryptocurrency from Yanis Alexandrovich Antroppenko, who stands accused of computer fraud and money laundering. Antroppenko is linked to the...

The post DOJ Seizes $2.8 Million in Crypto from Suspected Zeppelin Ransomware Operator appeared first on Penetration Testing Tools.