【安全圈】CL-UNK-0979 利用 Ivanti Connect Secure 中的零日漏洞获取网络访问权限
关键词安全漏洞Palo Alto Networks 发布了一份详细的威胁简报,介绍了 Ivanti 产品中的两个严重漏洞 CVE-2025-0282 和 CVE-2025-0283。这些漏洞影响 Iv
Aggregator
【安全圈】FTC 要求通用汽车停止收集和销售驾驶员数据
10 months 3 weeks ago
关键词数据泄露美国联邦贸易委员会 (FTC) 正在对通用汽车 (GM) 及其子公司 OnStar 采取行动,指控其非法收集和出售数百万辆汽车的驾驶员精确地理位置和驾驶行为数据。美国政府组织提出了一项和
Qilin
10 months 3 weeks ago
cohenido
Table Copier:擷取網頁表格的瀏覽器擴充
10 months 3 weeks ago
由
大路:高速中国里的工地纪事
10 months 3 weeks ago
这本书前面读起来诘屈聱牙,某页之后突然写实起来
大路:高速中国里的工地纪事
10 months 3 weeks ago
2025.1.19去年网友UID(7807573440)给我发消息,他在某匿名分享站上传了一本书,叫《大路:高速中国里的工地纪事》。去他给的上传点,系统提示对方未上传成功。回消息给他这个反馈,不知何故
S4x25:戴尔·彼得森概述工业网络安全愿景,强调创新与连接
10 months 3 weeks ago
As the industrial cybersecurity scene prepares to converge next month for S4x25 at the JW Ma
ChatGPT вместо мозгов: школьники массово переходят на ChatGPT
10 months 3 weeks ago
Данные показывают, как ИИ меняет учебный процесс.
揭秘俄罗斯人力情报的全新布局
10 months 3 weeks ago
揭秘俄罗斯人力情报的全新布局
10 months 3 weeks ago
自大俄特别军事行动以来,大俄情报部门在人力情报(HUMINT)招募策略上进行了显著调整,摒弃了冷战时期沿用的传统模式。以往,这类行动高度重视特工与情报来源之间的面对面交流,且在此之前会进行详尽的背景调
Scammer
10 months 3 weeks ago
ИИ не друг: чем опасны иллюзии о мыслящих машинах
10 months 3 weeks ago
Неверные термины вводят в заблуждение и мешают понимать реальные возможности технологий.
2025年世界经济论坛全球网络安全展望中的五大OT网络安全策略
10 months 3 weeks ago
The recent World Economic Forum’s Global Cybersecurity Outlook 2025 analyzes the escalati
CVE-2016-6816 | Apache Tomcat up to 6.0.47/7.0.72/8.0.38/8.5.6/9.0.0.M11 HTTP Split input validation (EDB-41783 / Nessus ID 900019)
10 months 3 weeks ago
A vulnerability was found in Apache Tomcat up to 6.0.47/7.0.72/8.0.38/8.5.6/9.0.0.M11. It has been rated as critical. This issue affects some unknown processing of the component HTTP Handler. The manipulation leads to improper input validation (Split).
The identification of this vulnerability is CVE-2016-6816. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Китайские адаптеры USB-Ethernet: шпионское устройство или пережиток прошлого?
10 months 3 weeks ago
Почему старые технологии могут вызывать панику.
CVE-2000-1196 | Netscape PublishingXpert 2.5 PSCOErrPage.htm errPagePath privileges management (SP2 / EDB-20966)
10 months 3 weeks ago
A vulnerability classified as critical has been found in Netscape PublishingXpert 2.5. Affected is an unknown function of the file PSCOErrPage.htm. The manipulation of the argument errPagePath leads to improper privilege management.
This vulnerability is traded as CVE-2000-1196. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
CVE-2010-2916 | Ajsquare AJ HYIP Meridian news.php id sql injection (EDB-14436 / XFDB-60590)
10 months 3 weeks ago
A vulnerability was found in Ajsquare AJ HYIP Meridian. It has been rated as critical. This issue affects some unknown processing of the file news.php. The manipulation of the argument id leads to sql injection.
The identification of this vulnerability is CVE-2010-2916. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Re Du musst bedenken, dass es einen Unterschied gibt, zwischen dem, was er denkt und was er sagt. Er kann ja denken, dass die beiden potentiellen Koal...
10 months 3 weeks ago
直播倒计时2天:在企业做安全和对外做安全产品有什么差异?
10 months 3 weeks ago
1月21日,《三个白帽聊安全》过来人聊经验感受,干货满满等你来!
直播倒计时2天:在企业做安全和对外做安全产品有什么差异?
10 months 3 weeks ago
1月21日,《三个白帽聊安全》过来人聊经验感受,干货满满等你来!