Aggregator

央视曝光了“克隆网站”形式的诈骗黑幕。在电商平台上存在着克隆、山寨各类官网的店铺，价格从几十元到几千元不等。

Космический щит Илона Маска дал трещину?

A vulnerability was found in Horde Groupware Webmail Edition 5.2.22. It has been rated as critical. This issue affects some unknown processing of the component CSV Data Handler. The manipulation leads to code injection. The identification of this vulnerability is CVE-2020-8518. The attack may be initiated remotely. Furthermore, there is an exploit available.

В курортном отеле обнаружен центр шпионажа за военными.

A vulnerability was found in Pentaho Business Intelligence Suite up to 1.1. It has been rated as very critical. Affected by this issue is some unknown functionality of the component MySQL. The manipulation leads to sql injection. This vulnerability is handled as CVE-2006-5675. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

安全资讯导视 • 国家发改委等三部门印发《国家数据基础设施建设指引》• 俄罗斯运营商Nodex遭乌克兰黑客攻击，网络被“摧毁”• 国家网络安全通报中心：境外黑客组织持续对中国和其他国家发起网络攻击PA

● 点击↑蓝字关注我们，获取更多安全风险通告漏洞概述漏洞名称Ivanti 多款产品缓冲区溢出漏洞漏洞编号QVD-2025-1974,CVE-2025-0282公开时间2025-01-08影响量级十万级

致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。

A vulnerability, which was classified as problematic, has been found in Merit AAA Radius Server 3.8m. This issue affects some unknown processing of the file rlmadmin.help of the component rlmadmin. The manipulation leads to symlink following. The identification of this vulnerability is CVE-2001-1000. Local access is required to approach this attack. Furthermore, there is an exploit available.

绿盟云原生攻防靶场助力新型计算环境下的网络安全人才培养

一.  前言纸上得来终觉浅，绝知此事要躬行。                -- 陆游《冬夜读书示子聿》    计算环境的快速发展，从早期的单机计算到分布式系统，再到如今的云计算、边缘计算以及大模型计

绿盟云原生攻防靶场助力新型计算环境下的网络安全人才培养

A proof-of-concept (PoC) exploit has been publicly disclosed for a critical vulnerability impacting macOS systems, identified as CVE-2024-54498. This vulnerability poses a significant security risk by allowing malicious applications to bypass the macOS Sandbox, a key security feature designed to isolate app activity and protect sensitive system resources. Details of CVE-2024-54498 The vulnerability, classified as high severity with […]

The post PoC Exploit Released for Critical macOS Sandbox Vulnerability (CVE-2024-54498) appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Authors:(1) Clauvin Almeida, Pontifical Catholic University of Rio de Janeiro (PUC-Rio), Rio de Ja

Authors:(1) Clauvin Almeida, Pontifical Catholic University of Rio de Janeiro (PUC-Rio), Rio de Ja

一、境外厂商产品漏洞1、Fortinet FortiEDR访问控制错误漏洞（CNVD-2025-00410）Fortinet FortiEDR是美国飞塔（Fortinet）公司的一个从头开始构建的端点