Aggregator

A vulnerability, which was classified as critical, was found in FiberHome Router. This affects an unknown part of the file /cgi-bin/webproc. The manipulation of the argument getpage leads to path traversal. This vulnerability is uniquely identified as CVE-2017-15647. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Sun Solaris 7.0/8.0. It has been rated as critical. Affected by this issue is some unknown functionality in the library ximp40. The manipulation of the argument arg0 leads to memory corruption. This vulnerability is handled as CVE-2001-0165. It is possible to launch the attack on the local host. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Уязвимости роутеров становятся главной целью для киберпреступников.

A vulnerability was found in Apple Mac OS X up to 10.11.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component apache_mod_php. The manipulation leads to deserialization. This vulnerability is handled as CVE-2015-6834. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

近日，一起大规模的数据泄露事件震动了网络安全界。名为“HikkI-Chan”的黑客在臭名昭著的Breach Forums上泄露了超过3.9亿VK用户的个人信息。

一、事件背景随着区块链技术的快速发展，以太坊作为其中的代表性平台，其智能合约的安全性受到了广泛关注。许多开发者和企业都在寻求有效的工具来检测和修复智能合约中的漏洞，以保障资产安全和业务稳定运行。然而，

A vulnerability was found in Sun Solaris 7.0/8.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component kcms_configure. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2001-0594. Attacking locally is a requirement. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Смартфоны становятся полем битвы за цифровую свободу.

#安全资讯 扩展程序「书签检查器」存在恶意劫持行为，会将谷歌搜索等网站劫持到货币化广告网络，建议用户删除。该扩展程序此前被谷歌标记为精选，不过似乎是在近期版本中加入了劫持代码，蓝点网网

A vulnerability was found in 7mediaws eduTrac up to 1.1.1. It has been rated as problematic. This issue affects some unknown processing of the component Installer. The manipulation of the argument showmask leads to path traversal. The identification of this vulnerability is CVE-2013-7097. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple iCloud up to 7.6 on Windows. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2018-4328. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Sun Solaris 7.0. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument TZ as part of Environment Variable leads to memory corruption. The identification of this vulnerability is CVE-2001-0423. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in DBL DBLTek. It has been rated as critical. This issue affects some unknown processing of the file frame.html of the component HTTP Basic Authentication. The manipulation of the argument passwd as part of Parameter leads to os command injection. The identification of this vulnerability is CVE-2017-16934. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in phpMyAdmin up to 4.0.10.6/4.1.14.7/4.2.13. It has been classified as problematic. This affects an unknown part of the component Password Handler. The manipulation leads to php weakness. This vulnerability is uniquely identified as CVE-2014-9218. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

前言看完了柴静的《柴静谈陈虻和崔永元 “衡量一个人对初衷的真诚，要看他愿意为它付出的代价”》之后又恰巧再次看了评论尸的《互联网是人类历史的一段弯路吗？》然后又看了全嘻嘻的《20年后，47岁的他想对

#加密货币 LUNA/UST 爆雷事件主角权道亨已经被引渡至美国，但对 400 亿美元的刑事欺诈指控不认罪。2022 年 LUNA/UST 爆雷造成市场损失 400 亿美元，随后权道亨

A vulnerability classified as problematic was found in e107 CMS. This vulnerability affects unknown code of the file e107_plugins/content/handlers/content_preset.php. The manipulation leads to cross site scripting. This vulnerability was named CVE-2013-2750. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A new Android malware named ‘FireScam’ is being distributed as a premium version of the Tele

A vulnerability was found in Sun Solaris up to 8.0. It has been declared as critical. This vulnerability affects unknown code of the component Xsun Server. The manipulation of the argument HOME as part of Environment Variable leads to memory corruption. This vulnerability was named CVE-2001-0422. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.