Aggregator

该漏洞已修复

Orange Cyberdefense’s CSIRT reported that threat actors exploited two vulnerabilities in Craft CMS to breach servers and steal data. Orange Cyberdefense’s CSIRT warns that threat actors chained two Craft CMS vulnerabilities in recent attacks. Orange experts discovered the flaws while investigating a server compromise. The two vulnerabilities, tracked as CVE-2025-32432 and CVE-2024-58136, are respectively a […]

A vulnerability classified as critical was found in Tenda W12 and i24 3.0.0.4(2887)/3.0.0.5(3644). Affected by this vulnerability is the function cgidhcpsCfgSet of the file /goform/modules of the component httpd. The manipulation of the argument json leads to stack-based buffer overflow. This vulnerability is known as CVE-2025-4007. The attack can be launched remotely. Furthermore, there is an exploit available.

The UK government says it will ban the possession or supply of SIM farms, in a fraud crackdown

Сэм Альтман пишет черновик правил, пока ИИ собирает черновики ваших признаний.

A vulnerability has been found in avatar_uploader v7.x-1.0-beta8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file view.php. The manipulation leads to path traversal. This vulnerability is known as CVE-2018-9205. The attack can be launched remotely. Furthermore, there is an exploit available.

Кажется, школьный учитель языка что-то недоговаривал о вашей будущей профессии.

A severe zero-day vulnerability has been uncovered in multiple Viasat satellite modem models, including the RM4100, RM4200, EM4100, RM5110, RM5111, RG1000, RG1100, EG1000, and EG1020. Identified by ONEKEY Research Lab through automated binary static analysis, the flaw, tracked as CVE-2024-6198, affects the “SNORE” web interface running on lighttpd over TCP ports 3030 and 9882. With […]

The post Viasat Modems Zero-Day Vulnerabilities Let Attackers Execute Remote Code appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

深空探索如未来的火星任务面临高延迟和数据传输低带宽等挑战。NASA 探测富金属小行星灵神星（16 Phyche）的“灵神星（Phyche）”号探测器前不久成功演示了从数百万公里外使用激光通信传输大量数据的能力。荷兰研究人员利用火星气候数据库探索了在火星上使用激光通信的可行性。研究发现，火星的沙尘暴颗粒会影响激光通信的传输，在沙尘暴季节激光通信可能会完全中断。研究建议火星通信系统最好混合激光通信和无线电通信，确保能在不同气候条件下都能使用。

企业邮箱如同数字城堡，而邮件安全网关则是城墙上的智能哨兵——它需精准拦截恶意钓鱼邮件、病毒附件等“外敌”，还要 […]

Как майнеры сумели превратить учебные серверы в дойную корову?

For the latest discoveries in cyber research for the week of 28th April, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES British retailer Marks & Spencer (M&S) experienced a cyber-attack that caused disruptions to its online order system and in-store contactless payments. The company suspended online orders temporarily, refunded some customers, and reported […]

The post 28th April – Threat Intelligence Report appeared first on Check Point Research.

struts2框架下的漏洞分析，一步步代码分析struts2漏洞到RCE

Cybersecurity researchers are warning about a large-scale phishing campaign targeting WooCommerce users with a fake security alert urging them to download a "critical patch" but deploy a backdoor instead. WordPress security company Patchstack described the activity as sophisticated and a variant of another campaign observed in December 2023 that employed a fake CVE ploy to breach sites running

EQTY Lab聚焦可信AI领域，面向高监管行业提供融合硬件加密、分布式账本与全生命周期治理的完整解决方案，重构AI系统的安全性、透明度与合规性，助力人工智能技术在金融、医疗、政务等关键场景的可信落地...

钓鱼攻击在 2025 年仍然是组织面临的一大挑战。事实上，随着攻击者越来越多地利用基于身份的技术而不是软件漏洞，钓鱼可以说比以往任何时候都更具威胁。

A vulnerability has been found in DomainMod up to 4.11.01 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file assets/add/registrar.php of the component Registrar Handler. The manipulation of the argument notes leads to cross site scripting. This vulnerability is known as CVE-2018-19752. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in gnuboard youngcart5 up to 5.4.5.1. Affected is an unknown function of the file adm/menu_list_update.php. The manipulation of the argument me_link leads to cross site scripting. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is traded as CVE-2021-4293. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Reprise RLM License Administration 14.2BL4. It has been classified as problematic. This affects an unknown part. The manipulation of the argument Password leads to cross site scripting. This vulnerability is uniquely identified as CVE-2022-30519. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.