Aggregator

A vulnerability was found in Concursive 2.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-7606. The attack can only be done within the local network. There is no exploit available.

As Middle East tensions rise, cyberattacks hit Iran’s government branches and nuclear facilities, following Israel’s response to Iran’s October 1 missile barrage. Amid escalating Middle East tensions, Iran faced major cyberattacks Saturday, disrupting its government branches and targeting nuclear facilities. The massive cyberattack followed Israel’s pledged response to Iran’s October 1 missile barrage, as regional […]

A vulnerability, which was classified as critical, has been found in Zendesk 1.0.5/7.x-1.1. This issue affects some unknown processing of the component E-Mail Message Handler. The manipulation of the argument Cc leads to improper authorization. The identification of this vulnerability is CVE-2024-49193. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file reset.php. The manipulation of the argument useremail leads to sql injection. This vulnerability is traded as CVE-2024-9894. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

个人数据资产可以变现了？国家数据局已官方辟谣；Palo Alto紧急修复多个严重的防火墙劫持漏洞 | 牛览 日期：2024年10月12日

纯血鸿蒙启动公测，爱加密鸿蒙加固平台发布，助力鸿蒙应用安全运营！ 日期：2024年10月12日 阅：9

OpenAI has disrupted over 20 malicious cyber operations abusing its AI-powered chatbot, ChatGPT, for debugging and developing malware, spreading misinformation, evading detection, and conducting spear-phishing attacks. [...]

A vulnerability was found in Actors Key 1.6.24.477. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-7605. The attack needs to be approached within the local network. There is no exploit available.

供应链的欧洲价值观化

卡西欧的攻击是否会成为威胁组织进入主流的突破口，进而带来更高的攻击量节奏，还有待观察。

Google создаёт терминал для запуска Debian на Android.

A vulnerability, which was classified as critical, has been found in Apple tvOS up to 11.4.1. Affected by this issue is some unknown functionality. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2018-4343. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

1. Abyss勒索团伙公布新的受害公司 2. Ransomhouse入侵国内某集团股份有限公司 3. Cactus勒索团伙公布了新的受害公司

A vulnerability classified as critical has been found in Acronis Cyber Backup up to 12.5 Build 16341. Affected is an unknown function. The manipulation leads to server-side request forgery. This vulnerability is traded as CVE-2020-16171. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Математика прогнозов: что мы знаем, а что — нет.

A vulnerability classified as critical has been found in Order Attachments for WooCommerce Plugin 2.0/2.4.1 on WordPress. Affected is an unknown function. The manipulation leads to missing authorization. This vulnerability is traded as CVE-2024-9756. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability has been found in Boost Your Blogs Engagement with WP Post Author up to 3.8.1 on WordPress and classified as critical. This vulnerability affects unknown code. The manipulation leads to sql injection. This vulnerability was named CVE-2024-8757. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Stackable Plugin up to 3.13.6 on WordPress and classified as critical. This issue affects some unknown processing of the component CSS Handler. The manipulation leads to injection. The identification of this vulnerability is CVE-2024-8760. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Elementor Addon Elements Plugin up to 1.13.8 on WordPress. It has been classified as problematic. Affected is the function table_saved_sections. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2024-8902. It is possible to launch the attack remotely. There is no exploit available.