Aggregator

文章记录了每周科技动态与资源分享，包括重庆消防站改造拆除、芯片书籍对比、苹果图标变化等新闻，并推荐了code-server等工具和GitHub Copilot等AI相关内容。

关于自动化推断无人机PID参数有效范围的研究工作获得ISSTA 2025杰出论文奖

关于软件多分支之间漏洞补丁自动化迁移的研究工作获得FSE 2025杰出论文奖

当前环境出现异常，需完成验证后方可继续访问。

当前环境出现异常，需完成验证后才能继续访问。

全面提高工业领域网络安全保障水平！

2025年6月，北京知其安科技有限公司成功举办第二期"网络安全验证专业人员认证”培训。

A vulnerability was found in IBM Cognos Controller and Controller up to 11.0.1. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to http request smuggling. This vulnerability is handled as CVE-2022-39163. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in IBM i 7.3/7.4/7.5/7.6. This affects an unknown part. The manipulation of the argument domain/IP address leads to improper neutralization of http headers for scripting syntax. This vulnerability is uniquely identified as CVE-2025-2950. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in IBM i 7.2/7.3/7.4/7.5/7.6 and classified as problematic. This issue affects some unknown processing of the component Advanced Job Scheduler. The manipulation leads to uncontrolled search path. The identification of this vulnerability is CVE-2025-33122. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Campcodes Employee Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /myprofile.php. The manipulation of the argument ID leads to sql injection. This vulnerability was named CVE-2025-6963. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Debian dpkg. Affected by this vulnerability is an unknown functionality. The manipulation leads to insecure temporary file. This vulnerability is known as CVE-2025-6297. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, has been found in Campcodes Employee Management System 1.0. Affected by this issue is some unknown functionality of the file /mark.php. The manipulation of the argument ID leads to sql injection. This vulnerability is handled as CVE-2025-6961. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Tenda AC6 15.03.05.16_multi and classified as critical. This vulnerability affects the function addWifiMacFilter. The manipulation of the argument deviceId leads to buffer overflow. This vulnerability was named CVE-2025-50641. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Campcodes Employee Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit.php. The manipulation of the argument ID leads to sql injection. The identification of this vulnerability is CVE-2025-6958. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Campcodes Employee Management System 1.0. Affected is an unknown function of the file /eloginwel.php. The manipulation of the argument ID leads to sql injection. This vulnerability is traded as CVE-2025-6959. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Campcodes Employee Management System 1.0. This affects an unknown part of the file /myprofileup.php. The manipulation of the argument ID leads to sql injection. This vulnerability is uniquely identified as CVE-2025-6962. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in Campcodes Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /empproject.php. The manipulation of the argument ID leads to sql injection. This vulnerability is known as CVE-2025-6960. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in Contec CONPROSYS HMI System up to 3.7.6. Affected is an unknown function of the file getqsetting.php. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2025-34080. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in LibreOffice up to 24.8.5/25.2.1. Affected by this issue is some unknown functionality of the component adbe.pkcs7.sha1 Signature Handler. The manipulation leads to improper verification of cryptographic signature. This vulnerability is handled as CVE-2025-2866. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.