Aggregator
SAP修复已遭利用的0day漏洞
1 year 1 month ago
速修复
Craft CMS RCE利用链用于窃取数据
1 year 1 month ago
速修复
Redis 高危漏洞 CVE-2025-21605:无需认证即可耗尽内存引发拒绝服务
1 year 1 month ago
安全客
EDPB关于GDPR第48条的第02/2024号指南(全文翻译)
1 year 1 month ago
如何处理第三国公共部门调取数据的要求
EDPB关于GDPR第48条的第02/2024号指南(全文翻译)
1 year 1 month ago
如何处理第三国公共部门调取数据的要求
更新:Base64编码在安卓中的使用-【2025春季班】看雪安卓高级研修班(月薪一万计划)
1 year 1 month ago
一起探索安卓逆向的奥秘
新型越狱攻击席卷ChatGPT、DeepSeek、Gemini 等主流 AI 平台
1 year 1 month ago
新型“ inception”越狱攻击席卷主流 AI 平台,暴露出大型语言模型在安全防护上的系统性漏洞
文件上传学习
1 year 1 month ago
看雪论坛作者ID:xcisme
Патчи фейковые — головная боль настоящая: в вашем WordPress поселился админ-призрак
1 year 1 month ago
P.A.S.-Form, p0wny и WSO — трио оболочек, превращающих систему в цифрового зомби.
CVE-2022-48434 | FFmpeg up to 5.1.1 pthread_frame.c use after free (Nessus ID 233036)
1 year 1 month ago
A vulnerability has been found in FFmpeg up to 5.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file libavcodec/pthread_frame.c. The manipulation leads to use after free.
This vulnerability is known as CVE-2022-48434. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-0432 | Delta Electronics DX-2100-L1-CN Net Diagnosis cross site scripting (icsa-23-033-05)
1 year 1 month ago
A vulnerability has been found in Delta Electronics DX-2100-L1-CN and classified as problematic. This vulnerability affects unknown code of the component Net Diagnosis Handler. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2023-0432. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-1810 | Google Chrome up to 111.0.5563.110 Visuals heap-based overflow (FEDORA-2023-78e350cb88)
1 year 1 month ago
A vulnerability was found in Google Chrome and classified as critical. Affected by this issue is some unknown functionality of the component Visuals. The manipulation leads to heap-based buffer overflow.
This vulnerability is handled as CVE-2023-1810. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-47870 | Redgate SQL Monitor 12.1.31.893 returnUrl cross site scripting (ID 171647 / EDB-51218)
1 year 1 month ago
A vulnerability was found in Redgate SQL Monitor 12.1.31.893. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument returnUrl leads to cross site scripting.
This vulnerability was named CVE-2022-47870. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Navigating Cybersecurity Frameworks – CISO Resource Guide
1 year 1 month ago
The role of the Chief Information Security Officer (CISO) has never been more critical. As organizations face a rapidly evolving threat landscape, CISOs must defend against cyberattacks and ensure compliance with a growing patchwork of regulations and standards. Cybersecurity frameworks have emerged as essential tools, providing structured approaches to managing risk, implementing controls, and aligning […]
The post Navigating Cybersecurity Frameworks – CISO Resource Guide appeared first on Cyber Security News.
CISO Advisory
数十家合作伙伴获“联营联运”认证!360安全云生态再扩容
1 year 1 month ago
360安全云联运商座谈会圆满落幕 数十家企业获“联营联运”认证!
数十家合作伙伴获“联营联运”认证!360安全云生态再扩容
1 year 1 month ago
360安全云联运商座谈会圆满落幕 数十家企业获“联营联运”认证!
CVE-2025-34028:Commvault 严重漏洞危及企业数据安全,备份系统成攻击目标
1 year 1 month ago
安全客
⌈京麒沙龙第17期⌋ 蓝军攻防专场
1 year 1 month ago
蓝军如何见招拆招?蓝军实战攻防战术如何演变?Chrome漏洞如何攻防?京麒沙龙第17期-蓝军攻防专场等你来~
⌈京麒沙龙第17期⌋ 蓝军攻防专场
1 year 1 month ago
蓝军如何见招拆招?蓝军实战攻防战术如何演变?Chrome漏洞如何攻防?京麒沙龙第17期-蓝军攻防专场等你来~