Aggregator

达美航空正式对 CrowdStrike 提起诉讼

Solidot
1 year 7 months ago
美国达美航空(Delta Air Lines)周五在佐治亚州 Fulton 县法院对网络安全公司 CrowdStrike 提起诉讼。CrowdStrike 在 7 月向客户推送了有问题的更新,导致全世界数百万 PC 蓝屏死机。达美航空深受这次事件的影响,有大量航班因此取消,扰乱了 130 万客户的旅行计划,给它造成了愈 5 亿美元的损失。达美航空称这次错误更新的影响是灾难性的,该公司自 2022 年以来一直购买 CrowdStrike 产品,此次事故迫使其取消了 7000 个航班,五天内影响了 130 万名乘客。达美航空在诉讼中称:“如果 CrowdStrike 在部署前在一台计算机上测试了有问题的更新,那么这台计算机就会崩溃。由于无法远程删除问题更新,CrowdStrike 严重影响了达美航空的业务,并给达美航空客户带来了巨大的延误。”

CVE-2024-10422 | SourceCodester Attendance and Payroll System 1.0 /admin/overtime_add.php id sql injection

VulDB Recent Entries
1 year 7 months ago
A vulnerability, which was classified as critical, has been found in SourceCodester Attendance and Payroll System 1.0. This issue affects some unknown processing of the file /admin/overtime_add.php. The manipulation of the argument id leads to sql injection. The identification of this vulnerability is CVE-2024-10422. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-10421 | SourceCodester Attendance and Payroll System 1.0 /admin/overtime_row.php id sql injection

VulDB Recent Entries
1 year 7 months ago
A vulnerability classified as critical was found in SourceCodester Attendance and Payroll System 1.0. This vulnerability affects unknown code of the file /admin/overtime_row.php. The manipulation of the argument id leads to sql injection. This vulnerability was named CVE-2024-10421. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-10420 | SourceCodester Attendance and Payroll System 1.0 update.php upload image unrestricted upload

VulDB Recent Entries
1 year 7 months ago
A vulnerability classified as critical has been found in SourceCodester Attendance and Payroll System 1.0. This affects the function upload of the file /marimar/guest/update.php. The manipulation of the argument image leads to unrestricted upload. This vulnerability is uniquely identified as CVE-2024-10420. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

Chinese cyber spies targeted phones used by Trump and Vance

Security Affairs
1 year 7 months ago
China-linked threat actors targeted the phone communications of Donald Trump and vice presidential nominee JD Vance. China-linked hackers reportedly targeted phones used by former President Donald Trump and Senator JD Vance as part of a cyber espionage campaign aimed at gathering intelligence on American leaders, the New York Times reported. US intelligence is investigating the claims […]
Pierluigi Paganini

CVE-2024-10419 | code-projects Blood Bank Management System 1.0 /bloodrequest.php msg cross site scripting

VulDB Recent Entries
1 year 7 months ago
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /bloodrequest.php. The manipulation of the argument msg leads to cross site scripting. This vulnerability is handled as CVE-2024-10419. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-10418 | code-projects Blood Bank Management System 1.0 /file/infoAdd.php bg sql injection

VulDB Recent Entries
1 year 7 months ago
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /file/infoAdd.php. The manipulation of the argument bg leads to sql injection. This vulnerability is known as CVE-2024-10418. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-10417 | code-projects Blood Bank Management System 1.0 /file/delete.php bid sql injection

VulDB Recent Entries
1 year 7 months ago
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /file/delete.php. The manipulation of the argument bid leads to sql injection. This vulnerability is traded as CVE-2024-10417. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-10416 | code-projects Blood Bank Management System 1.0 /file/cancel.php reqid sql injection

VulDB Recent Entries
1 year 7 months ago
A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /file/cancel.php. The manipulation of the argument reqid leads to sql injection. The identification of this vulnerability is CVE-2024-10416. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-10415 | code-projects Blood Bank Management System 1.0 /file/accept.php reqid sql injection

VulDB Recent Entries
1 year 7 months ago
A vulnerability has been found in code-projects Blood Bank Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /file/accept.php. The manipulation of the argument reqid leads to sql injection. This vulnerability was named CVE-2024-10415. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

波音探索出售其太空业务

Solidot
1 year 7 months ago
波音正探索出售其太空业务,该计划处于早期阶段,可能包括出售载人飞船 Starliner 以及支持国际空间站的业务。波音最近深陷困境,737 Max 飞机坠毁事故,两名搭乘 Starliner 的宇航员困在空间站,它制造的一颗通讯卫星在太空停止工作并解体。波音 CEO Kelly Ortberg 在本周的财报电话会议上表示考虑缩小业务规模,以精益求精而不是粗枝大叶。波音会保留核心的商业飞机和防御系统业务。它可能会考虑继续保留 NASA 登月火箭系统 Space Launch System,以及商业和军用卫星业务。

Managed ad