Aggregator

Currently trending CVE - Hype Score: 1 - A user with access to the DB could craft a database entry that would result in executing code on Triggerer - which gives anyone who have access to DB the same permissions as Dag Author. Since direct DB access is not usual and recommended for Airflow, the likelihood of it making ...

YouTube будет искать украденные лица так же, как ворованную музыку.

关键词漏洞2026年3月的安全圈，注定不太平。思科一次性修复48个漏洞，微软发布83个CVE，Chrome又被曝零日……这是什么概念？

就在刚刚，CISA出手了。3月13日，美国网络安全和基础设施安全局（CISA）直接将两个Chrome漏洞加入已知利用漏洞（KEV）目录。这意味着什么？

一年一度的两会，是观察国家政策走向的重要窗口。2026年政府工作报告已经新鲜出炉，其中关于网络安全的表述，字字千钧。今天，我们就来深度拆解这份报告背后的安全信号。本次报告明确提出：“健全数据要素基础制度，强化数据安全与个人信息保护，完...

Frida17.8引入的大招：基于eBPF的系统调用跟踪模块技术原理解析

В новом Chrome 146 устранили критическую уязвимость, позволяющую выполнить вредоносный код.

缺钱？缺名？缺人脉？看雪百万流量池已备好，就等你来“讲课”变现

看雪论坛作者ID：G0t1T

… и нам очень важно понять, как это работает.

A vulnerability identified as critical has been detected in WebGeniusLab BigHearts Plugin up to 3.1.14 on WordPress. This affects an unknown function. Performing a manipulation results in missing authorization. This vulnerability is cataloged as CVE-2026-32439. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability marked as critical has been reported in vowelweb VW School Education Plugin up to 1.4.6 on WordPress. Affected is an unknown function. The manipulation leads to missing authorization. This vulnerability is documented as CVE-2026-32438. The attack can be initiated remotely. There is not any exploit available.

A vulnerability described as critical has been identified in vowelweb VW Portfolio Plugin up to 1.3.3 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation results in missing authorization. This vulnerability is reported as CVE-2026-32437. The attack can be launched remotely. No exploit exists.

A vulnerability, which was classified as critical, was found in vowelweb VW Photography Plugin up to 1.3.8 on WordPress. This issue affects some unknown processing. Executing a manipulation can lead to missing authorization. This vulnerability is handled as CVE-2026-32436. The attack can be executed remotely. There is not any exploit available.

A vulnerability classified as critical was found in Ex-Themes WP Food Plugin up to 2.7.1 on WordPress. This affects an unknown part. Such manipulation leads to missing authorization. This vulnerability is traded as CVE-2026-32440. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is advised.

A vulnerability was found in Elementor Website Builder Plugin up to 3.35.5 on WordPress and classified as critical. The affected element is an unknown function. The manipulation results in missing authorization. This vulnerability was named CVE-2026-32445. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in Syed Balkhi Contact Form by WPForms Plugin up to 1.9.9.3 on WordPress. It has been declared as critical. This affects an unknown function. Such manipulation leads to missing authorization. This vulnerability is referenced as CVE-2026-32446. It is possible to launch the attack remotely. No exploit is available.

A vulnerability classified as problematic was found in Josh Kohlbach Product Feed Pro for WooCommerce Plugin up to 13.5.2 on WordPress. This affects an unknown function. The manipulation results in cross-site request forgery. This vulnerability is reported as CVE-2026-32443. The attack can be launched remotely. No exploit exists.