Aggregator

A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02 and classified as problematic. Affected by this issue is some unknown functionality of the file /goform/formSetDDNS of the component DDNS Service. The manipulation leads to improper access controls. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is handled as CVE-2025-2550. The attack needs to be initiated within the local network. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability was found in langgenius dify. It has been declared as critical. Affected by this vulnerability is the function vn.get_training_plan_generic of the component Vanna Module. The manipulation leads to code injection. This vulnerability is known as CVE-2025-0185. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in ollama up to 0.3.14. This vulnerability affects unknown code of the component GGUF Model Handler. The manipulation leads to improper validation of array index. This vulnerability was named CVE-2025-0313. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in significant-gravitas autogpt up to 0.3.x. Affected is an unknown function. The manipulation leads to command injection. This vulnerability is traded as CVE-2025-1040. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in mlflow up to 2.17.2. Affected by this issue is some unknown functionality of the file /graphql. The manipulation leads to resource consumption. This vulnerability is handled as CVE-2025-0453. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in One Click Order Re-Order Plugin up to 1.1.9 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-5641. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Sola Plugins WP Tweet Walls up to 1.0.3 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2024-38344. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Artifex Ghostscript up to 10.02.x and classified as critical. This issue affects some unknown processing. The manipulation of the argument CIDFSubstPath/CIDFSubstFont leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2024-29507. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Nested Pages Plugin up to 3.2.7 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2024-5943. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability classified as problematic was found in y_project RuoYi up to 4.7.9. Affected by this vulnerability is the function isJsonRequest of the component Content-Type Handler. The manipulation of the argument HttpHeaders.CONTENT_TYPE leads to cross site scripting. This vulnerability is known as CVE-2024-6511. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in VMware Cloud Director Availability up to 4.7.1. It has been classified as problematic. Affected is an unknown function. The manipulation leads to basic cross site scripting. This vulnerability is traded as CVE-2024-22277. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

HackerNews 编译，转载请注明出处： 据公民实验室（The Citizen Lab）的一份新报告称，澳大利亚、加拿大、塞浦路斯、丹麦、以色列和新加坡政府很可能是以色列公司 Paragon Solutions 开发的间谍软件的客户。 Paragon 由 Ehud Barak 和 Ehud Schneorson 于 2019 年创立，该公司开发了一种名为 Graphite 的监控工具，能够从设备上的即时通讯应用中收集敏感数据。 公民实验室表示，通过梳理与该间谍软件相关的服务器基础设施，已将上述六国政府识别为“疑似 Paragon 部署”对象。 这一发现距离 Meta 旗下的 WhatsApp 声明其通知约 90 名记者和民间社会组织成员（称其为 Graphite 攻击目标）还不到两个月。这些攻击已于 2024 年 12 月被阻断。 这些攻击的目标人群遍布 20 多个国家，包括欧洲的比利时、希腊、拉脱维亚、立陶宛、奥地利、塞浦路斯、捷克共和国、丹麦、德国、荷兰、葡萄牙、西班牙和瑞典等国。 当时，一位 WhatsApp 发言人对《黑客新闻》表示：“这是最新例证，说明为何间谍软件公司必须为其非法行为负责。WhatsApp 将继续保护人们私下交流的能力。” 在这些攻击中，目标对象被添加到 WhatsApp 群组中，随后收到一份 PDF 文档。该文档会被自动解析，触发现已修复的零日漏洞，从而加载 Graphite 间谍软件。最终阶段是突破安卓沙盒，入侵目标设备上的其他应用。 对被入侵的安卓设备的进一步调查发现了一种名为 BIGPRETZEL 的取证痕迹，据信该痕迹可用于唯一识别 Paragon 的 Graphite 间谍软件感染。 此外，证据还表明，2024 年 6 月，意大利难民在利比亚组织的一名创始人所使用的 iPhone 可能遭到 Paragon 感染。苹果公司随后通过发布 iOS 18 解决了这一攻击途径。 苹果公司在一份声明中表示：“此类雇佣间谍软件攻击极为复杂，开发成本高达数百万美元，使用寿命通常较短，且专门针对特定个体，因其身份或行为而成为攻击目标。” “在检测到相关攻击后，我们的安全团队迅速开发并在 iOS 18 初始版本中部署了修复程序，以保护 iPhone 用户，并向可能被单独针对的用户发送苹果威胁通知，以告知并协助他们。”     消息来源：TheHackerNews； 本文由 HackerNews.cc 翻译整理，封面来源于网络；  转载请注明“转自 HackerNews.cc”并附上原文

以“毒云藤”为例：“台独”势力网络间谍活动解析；“绿斑“攻击组织使用开源远控木马的一组钓鱼攻；击分析RedCurl APT 组织利用 7-Zip 加密存档文件窃取数据；Squid Werewolf伪装招聘人员进行网络钓鱼攻击

以“毒云藤”为例：“台独”势力网络间谍活动解析；“绿斑“攻击组织使用开源远控木马的一组钓鱼攻；击分析RedCurl APT 组织利用 7-Zip 加密存档文件窃取数据；Squid Werewolf伪装招聘人员进行网络钓鱼攻击

以“毒云藤”为例：“台独”势力网络间谍活动解析；“绿斑“攻击组织使用开源远控木马的一组钓鱼攻；击分析RedCurl APT 组织利用 7-Zip 加密存档文件窃取数据；Squid Werewolf伪装招聘人员进行网络钓鱼攻击

以“毒云藤”为例：“台独”势力网络间谍活动解析；“绿斑“攻击组织使用开源远控木马的一组钓鱼攻；击分析RedCurl APT 组织利用 7-Zip 加密存档文件窃取数据；Squid Werewolf伪装招聘人员进行网络钓鱼攻击

以“毒云藤”为例：“台独”势力网络间谍活动解析；“绿斑“攻击组织使用开源远控木马的一组钓鱼攻；击分析RedCurl APT 组织利用 7-Zip 加密存档文件窃取数据；Squid Werewolf伪装招聘人员进行网络钓鱼攻击

以“毒云藤”为例：“台独”势力网络间谍活动解析；“绿斑“攻击组织使用开源远控木马的一组钓鱼攻；击分析RedCurl APT 组织利用 7-Zip 加密存档文件窃取数据；Squid Werewolf伪装招聘人员进行网络钓鱼攻击

以“毒云藤”为例：“台独”势力网络间谍活动解析；“绿斑“攻击组织使用开源远控木马的一组钓鱼攻；击分析RedCurl APT 组织利用 7-Zip 加密存档文件窃取数据；Squid Werewolf伪装招聘人员进行网络钓鱼攻击

ACEshark ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminating the need for tools like accesschk.exe or other non-native binaries. Why? Efficiently identify and analyze service...

The post ACEshark: extraction and analysis of Windows service configurations and Access Control Entries appeared first on Penetration Testing Tools.