Aggregator
Cline: Vulnerable To Data Exfiltration And How To Protect Your Data
4 months ago
Cline is quite a popular AI coding agent, according to the product website it has 2+ million downloads and over 47k stars on GitHub.
Unfortunately, Cline is vulnerable to data exfiltration through the rendering of markdown images from untrusted domains in the chat box.
This allows an adversary to exfiltrate sensitive user information during a prompt injection attack by reading sensitive data (e.g. .env file) and appending its contents to the URL of an image.
Anthropic Disrupts AI-Powered Cyberattacks Automating Theft and Extortion Across Critical Sectors
4 months ago
Anthropic on Wednesday revealed that it disrupted a sophisticated operation that weaponized its artificial intelligence (AI)-powered chatbot Claude to conduct large-scale theft and extortion of personal data in July 2025.
"The actor targeted at least 17 distinct organizations, including in healthcare, the emergency services, and government, and religious institutions," the company said. "
The Hacker News
Rhysida
4 months ago
You must login to view this content
cohenido
韩国禁止中小学生课堂使用手机
4 months ago
韩国成为最新一个限制中小学生使用手机和社交媒体的国家。韩国周三通过了一项法案,禁止学生在课堂上使用手机和智能设备。该法案将于 2026 年 3 月下一学年生效,得到了议员、家长和教师的支持,他们认为使用智能手机影响成绩,占用了本可以花在学习上的时间。世界有很多国家限制中小学生使用智能手机,韩国是少数将这一禁令写入法律的国家。
Qilin
4 months ago
You must login to view this content
cohenido
ShadowSilk Campaign Targets Central Asian Governments
4 months ago
A series of cyber-attacks against government organizations in Central Asia and Asia- Pacific has been linked to the ShadowSilk threat cluster
Хакеры получили свою премию «Оскар». Pentest Award отметил лучших охотников за уязвимостями
4 months ago
Хакеры взяли верх на премии года.
Spanish police arrest student suspected of hacking school system to change grades
4 months ago
Spanish police have arrested a university student suspected of hacking the local government’s education management system to alter grades and gain access to professors’ emails.
Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius
4 months ago
A threat group Google tracks as UNC6395 has pilfered troves of data from Salesforce corporate instances, in search of credentials that can be used to compromise those organizations’ environments. “[Google Threat Intelligence Group] observed UNC6395 targeting sensitive credentials such as Amazon Web Services (AWS) access keys (AKIA), passwords, and Snowflake-related access tokens,” the company’s incident responders shared. How did UNC6395 access Salesforce instances? Salesforce is a cloud-based customer relationship management platform. To access the targeted … More →
The post Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius appeared first on Help Net Security.
Zeljka Zorz
Bluesky 成为科学社区的首选平台
4 months ago
在马斯克(Elon Musk)于 2022 年收购 Twitter 后,该平台使用的推荐算法和审核政策令很多人感到不满,因此出现了一波退出潮,用户们涌向了 Threads、Post、Mastodon 和 Bluesky 等替代微博客平台。在近三年时间之后,Bluesky 成为科学社区的首先平台。海洋生物学家 David Shiffman 和社会学家 Julia Wester 合作展开了一项调查,在接受调查的 813 位科学家中,逾九成受访者表示使用 Twitter 了解各自领域的新进展;85.5%的受访者表示使用 Twitter 进行职业社交;77.3% 的受访者表示使用 Twitter 从事公众宣传。约四分之三的受访者表示,自从马斯克接手后,该平台在上述专业用途上的实用性显著下降。近半数人仍然拥有 Twitter 账户,但使用频率显著降低或完全不使用;约 40% 的人则删除了 Twitter 账户,转而使用 Bluesky。用户的主要抱怨是垃圾信息、色情、机器人发的帖子和付费用户推广帖子显著增加,受访者表示不喜欢自己的帖子与极端主义内容相关联。虽然 Twitter 的用户数远多于 Bluesky,但包括 Ars 在内的网站来自于 Twitter 的访问量已经低于 Bluesky,Bluesky 的互动氛围也被认为优于 Twitter/X。
契约锁电子签章系统 pdfverifier rce 前台漏洞分析(从源码分析)
4 months ago
最近 hvv 也打了不少契约锁,正好也有源码,这次来分析一下这个漏洞的原因,环境搭建就搭建了半天,然后分析下来也还比较流程
自从实习了也好久没有分析过漏洞了,下班就想玩,正好leader 给了这个任务
CVE-2025-2028 | Check Point Management Log Server R81.10/R81.20/R82 CSV File certificate validation
4 months ago
A vulnerability labeled as critical has been found in Check Point Management Log Server R81.10/R81.20/R82. This issue affects some unknown processing of the component CSV File Handler. Such manipulation leads to improper certificate validation.
This vulnerability is referenced as CVE-2025-2028. It is possible to launch the attack remotely. No exploit is available.
vuldb.com
CVE-2025-54878 | NASA CryptoLib up to 1.4.0 CCSDS Space Data Link Security Protocol heap-based overflow (GHSA-9qph-pxfm-q9g4)
4 months ago
A vulnerability identified as critical has been detected in NASA CryptoLib up to 1.4.0. This affects an unknown function of the component CCSDS Space Data Link Security Protocol Handler. Performing manipulation results in heap-based buffer overflow.
This vulnerability was named CVE-2025-54878. The attack may be initiated remotely. There is no available exploit.
You should upgrade the affected component.
vuldb.com
CVE-2025-25736 | Kapsch TrafficCom RIS-9260 RSU LEO 3.2.0.829.23/3.8.0.1119.42/4.6.0.1211.28 Android Debug Bridge adb improper authentication (EUVD-2025-25796)
4 months ago
A vulnerability, which was classified as critical, was found in Kapsch TrafficCom RIS-9260 RSU LEO 3.2.0.829.23/3.8.0.1119.42/4.6.0.1211.28. This affects an unknown function of the file /mnt/c3platpersistent/opt/platform-tools/adb of the component Android Debug Bridge. Such manipulation leads to improper authentication.
This vulnerability is listed as CVE-2025-25736. The attack can be executed directly on the physical device. There is no available exploit.
vuldb.com
CVE-2025-25735 | Kapsch TrafficCom RIS-9160/TrafficCom RIS-9260 3.2.0.829.23/3.8.0.1119.42/4.6.0.1211.28 SPI Protected Range Register security-sensitive hardware controls with missing lock bit protection (EUVD-2025-25797)
4 months ago
A vulnerability was found in Kapsch TrafficCom RIS-9160 and TrafficCom RIS-9260 3.2.0.829.23/3.8.0.1119.42/4.6.0.1211.28. It has been declared as problematic. Affected by this issue is some unknown functionality of the component SPI Protected Range Register Handler. The manipulation results in security-sensitive hardware controls with missing lock bit protection.
This vulnerability is reported as CVE-2025-25735. The attack requires a local approach. No exploit exists.
vuldb.com
CVE-2025-55443 | Telpo MDM up to 1.4.9 on Android External Storage log file
4 months ago
A vulnerability identified as problematic has been detected in Telpo MDM up to 1.4.9 on Android. This affects an unknown part of the component External Storage Handler. Performing manipulation results in sensitive information in log files.
This vulnerability is reported as CVE-2025-55443. The attack requires a local approach. No exploit exists.
vuldb.com
CVE-2025-52353 | Badaso CMS 2.9.11 Media Manager unrestricted upload
4 months ago
A vulnerability categorized as critical has been discovered in Badaso CMS 2.9.11. This issue affects some unknown processing of the component Media Manager. Executing manipulation can lead to unrestricted upload.
This vulnerability is registered as CVE-2025-52353. It is possible to launch the attack remotely. No exploit is available.
vuldb.com
CVE-2024-35203 | System Mahara up to 22.10.5/23.04.5/24.04.0 cross site scripting
4 months ago
A vulnerability described as problematic has been identified in System Mahara up to 22.10.5/23.04.5/24.04.0. Affected by this vulnerability is an unknown functionality. Executing manipulation can lead to cross site scripting.
This vulnerability appears as CVE-2024-35203. The attack may be performed from a remote location. There is no available exploit.
Upgrading the affected component is recommended.
vuldb.com
CVE-2023-21125 | Google Android 12/12L bta_hh.cc btif_hh_hsdata_rpt_copy_cb use after free
4 months ago
A vulnerability was found in Google Android 12/12L. It has been rated as critical. Affected by this issue is the function btif_hh_hsdata_rpt_copy_cb of the file bta_hh.cc. Performing manipulation results in use after free.
This vulnerability is identified as CVE-2023-21125. The attack is only possible with local access. There is not any exploit available.
To fix this issue, it is recommended to deploy a patch.
vuldb.com