Aggregator

A vulnerability classified as critical has been found in Apple iBooks Author up to 2.4.0. This affects an unknown part. The manipulation leads to xml external entity reference. This vulnerability is uniquely identified as CVE-2016-1789. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Red Hat Linux 2.1. It has been classified as critical. Affected is an unknown function of the component abuse.console. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-1999-1491. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Harvestyourdata droid Survey Offline Forms 2.5.2. Affected by this issue is some unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-7573. Access to the local network is required for this attack. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Satori go.uuid. Affected by this issue is the function g.rand.Read. The manipulation leads to cryptographically weak prng. This vulnerability is handled as CVE-2021-3538. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in MLflow up to 2.11.2. It has been classified as problematic. Affected is an unknown function of the component Query String Handler. The manipulation leads to path traversal: '\..\filename'. This vulnerability is traded as CVE-2024-2928. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in MLflow up to 2.11.1. Affected is an unknown function. The manipulation leads to undefined behavior for input to api. This vulnerability is traded as CVE-2024-3099. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Hunk Companion Plugin up to 1.8.4 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the component Plugin Installation Handler. The manipulation leads to missing authorization. The identification of this vulnerability is CVE-2024-9707. The attack may be initiated remotely. There is no exploit available.

活动倒计时三天，冲刺！

Het gebeurt niet dagelijks dat er bij Defensie Gevechtsinsignes worden uitgereikt. Vandaag zelfs 2 keer. Militairen die in juni betrokken waren bij een drugsonderschepping in het Caribisch gebied ontvingen ze. Ze werden tijdens deze counterdrugsoperatie zeker 2 keer geramd door de go-fast van de verdachten. Vanuit zelfverdediging en om de boot te stoppen zagen zij zich genoodzaakt om te vuren.  

A vulnerability classified as critical was found in fallacystudios Stoner's Handbook L- Bud Guide 7.2. Affected by this vulnerability is an unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is known as CVE-2014-7572. The attack needs to be initiated within the local network. There is no exploit available.

Кибератаки на университеты учащаются каждую неделю. Что делать?

A vulnerability, which was classified as critical, has been found in GutenKit Plugin up to 2.1.0 on WordPress. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2024-9234. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Linkz.ai Plugin up to 1.1.8 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Setting Handler. The manipulation leads to missing authorization. This vulnerability was named CVE-2024-9587. The attack can be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Linkz.ai Plugin up to 1.1.8 on WordPress. Affected is an unknown function of the component Setting Handler. The manipulation leads to missing authorization. This vulnerability is traded as CVE-2024-9586. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in ShopLentor Plugin up to 2.9.8 on WordPress. It has been classified as problematic. Affected is an unknown function of the component FAQ Widget Elementor Template. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2024-9538. It is possible to launch the attack remotely. There is no exploit available.

中央网信办和教育部宣布部署开展“清朗·规范网络语言文字使用”专项行动。专项行动聚焦部分网站平台在热搜榜单、首页首屏、发现精选等重点环节呈现的语言文字不规范、不文明现象，重点整治歪曲音、形、义，编造网络黑话烂梗，滥用隐晦表达等突出问题。专项行动要求，各地网信、教育部门要强化协同联动...集中清理不规范、不文明网络语言文字相关信息...

A vulnerability was found in Salt up to 2015.8.3 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2016-1866. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.