Aggregator

A vulnerability was found in Adobe Commerce up to 2.4.6-p4/2.4.5-p6/2.4.4-p7/2.4.7-beta3 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2024-20758. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Commerce up to 2.4.6-p4/2.4.5-p6/2.4.4-p7/2.4.7-beta3. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-20759. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe InDesign Desktop up to 18.5.1/19.2. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-20766. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Dell Alienware Command Center. Affected is an unknown function. The manipulation leads to insufficient isolation of symbolic constant definitions. This vulnerability is traded as CVE-2024-0159. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Photoshop Desktop up to 24.7.2/25.3.1. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2024-20770. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in 2fly Gift Delivery System 6.0. Affected is an unknown function of the file 2fly_gift.php. The manipulation of the argument gameid leads to sql injection. This vulnerability is traded as CVE-2009-2915. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

在数字化浪潮席卷全球的今天，网络安全不再是”如果发生攻击”的问题，而是”何 […]

新闻速览 •损失已达百亿美元，汽车行业网络安全形势日益严峻 •Oracle因云数据泄露事件面临集体诉讼，或影响 […]

新闻速览 •ATT隐私框架实施存歧视，苹果公司被法国竞争管理局罚款1.5亿欧元 •密码学专家王晓峰夫妇神秘消失 […]

想象一下，一个初级程序员敲下几行自然语言描述，几秒钟后，一个完整的OAuth2授权服务——约2000行精确无误 […]

A vulnerability, which was classified as critical, has been found in Piwigo. Affected by this issue is the function rate_picture. The manipulation of the argument rate leads to sql injection. This vulnerability is handled as CVE-2014-9115. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Sunder Windows rootkit modeled after Lazarus Group’s FudModule rootkit. Reference this version of Sunder for an example of the appid.sys driver exploit, which was utilized by Lazarus Group FudModule rootkit. Sunder’s vulnerable driver in this GitHub repository...

The post Sunder: Windows rootkit designed to work with BYOVD exploits appeared first on Penetration Testing Tools.

HFish It is a cross-platform honeypot platform developed based on golang, which has been meticulously built for enterprise security Multi-function： Not just support HTTP(S) Pot，It also supports SSH、SFTP、Redis、Mysql、FTP、Telnet、Deep etc. Expansibility： Provide API Interface，Users can expand honeypot module at...

The post HFish: cross platform honeypot platform appeared first on Penetration Testing Tools.

A vulnerability has been found in iteaj iboot 物联网网关 1.1.3 and classified as problematic. This vulnerability affects unknown code of the file /common/upload of the component File Upload. The manipulation of the argument File leads to cross site scripting. This vulnerability was named CVE-2025-3326. The attack can be initiated remotely. Furthermore, there is an exploit available.

出海浪潮下的安全挑战 在全球化进程不断加速的当下，中国企业出海的步伐愈发坚定。无论是互联网科技企业拓展

协奏成章

出海浪潮下的安全挑战 在全球化进程不断加速的当下，中国企业出海的步伐愈发坚定。无论是互联网科技企业拓展