【漏洞通告】CrushFTP 身份验证绕过漏洞(CVE-2025-2825)
2025年3月31日,深瞳漏洞实验室监测到一则CrushFTP组件存在身份验证绕过漏洞的信息,漏洞编号:CVE-2025-2825,漏洞威胁等级:严重。
Aggregator
【漏洞通告】CrushFTP 身份验证绕过漏洞(CVE-2025-2825)
4 months 2 weeks ago
2025年3月31日,深瞳漏洞实验室监测到一则CrushFTP组件存在身份验证绕过漏洞的信息,漏洞编号:CVE-2025-2825,漏洞威胁等级:严重。
【漏洞通告】CrushFTP 身份验证绕过漏洞(CVE-2025-2825)
4 months 2 weeks ago
2025年3月31日,深瞳漏洞实验室监测到一则CrushFTP组件存在身份验证绕过漏洞的信息,漏洞编号:CVE-2025-2825,漏洞威胁等级:严重。
【漏洞通告】CrushFTP 身份验证绕过漏洞(CVE-2025-2825)
4 months 2 weeks ago
2025年3月31日,深瞳漏洞实验室监测到一则CrushFTP组件存在身份验证绕过漏洞的信息,漏洞编号:CVE-2025-2825,漏洞威胁等级:严重。
【漏洞通告】CrushFTP 身份验证绕过漏洞(CVE-2025-2825)
4 months 2 weeks ago
2025年3月31日,深瞳漏洞实验室监测到一则CrushFTP组件存在身份验证绕过漏洞的信息,漏洞编号:CVE-2025-2825,漏洞威胁等级:严重。
如何规避人工智能带来的政务服务风险
4 months 2 weeks ago
如何规避人工智能带来的政务服务风险
4 months 2 weeks ago
如何规避人工智能带来的政务服务风险
4 months 2 weeks ago
如何规避人工智能带来的政务服务风险
4 months 2 weeks ago
如何规避人工智能带来的政务服务风险
4 months 2 weeks ago
如何规避人工智能带来的政务服务风险
4 months 2 weeks ago
CrushFTP 认证绕过漏洞(CVE-2025-2825)
4 months 2 weeks ago
CrushFTP 认证绕过漏洞(CVE-2025-2825)
Resilience in the face of ransomware: A key to business survival
4 months 2 weeks ago
Your company’s ability to tackle the ransomware threat head-on can ultimately be a competitive advantage
Второй шанс или вторая ошибка: разработчики настаивают на защите от вендор-экзита
4 months 2 weeks ago
Российский софт просит новых мер поддержки.
CVE-2025-31410 | Ashish Ajani WP Church Donation Plugin up to 1.7 on WordPress cross-site request forgery
4 months 2 weeks ago
A vulnerability classified as problematic was found in Ashish Ajani WP Church Donation Plugin up to 1.7 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery.
This vulnerability was named CVE-2025-31410. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-31406 | ELEXtensions ELEX WooCommerce Request a Quote Plugin up to 2.3.3 on WordPress authorization
4 months 2 weeks ago
A vulnerability classified as problematic has been found in ELEXtensions ELEX WooCommerce Request a Quote Plugin up to 2.3.3 on WordPress. This affects an unknown part. The manipulation leads to missing authorization.
This vulnerability is uniquely identified as CVE-2025-31406. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-2072 | FAST LTA Silent Brick WebUI prior 2.63.04 h/hd/p/pi/s/t/x/y cross site scripting
4 months 2 weeks ago
A vulnerability was found in FAST LTA Silent Brick WebUI. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument h/hd/p/pi/s/t/x/y leads to cross site scripting.
This vulnerability is handled as CVE-2025-2072. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-2071 | FAST LTA Silent Brick WebUI prior 2.63.04 hd/pi os command injection
4 months 2 weeks ago
A vulnerability was found in FAST LTA Silent Brick WebUI. It has been declared as very critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument hd/pi leads to os command injection.
This vulnerability is known as CVE-2025-2071. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
一周安全动态回顾:Chrome零日漏洞、IngressNightmare、太阳能设备漏洞与DNS攻击手法
4 months 2 weeks ago
Chrome零日漏洞遭利用,勒索软件升级,太阳能设备46漏洞威胁电网安全!
鱼也会使用工具
4 months 2 weeks ago
在公民科学项目 Fish Tool Use 的帮助下,科学家报告鱼也会使用工具,研究报告发表在《Coral Reefs》期刊上。这项研究否定了使用工具是哺乳动物和鸟类所独有的信念。研究记录了鱼类有意捡起螃蟹和软体动物等硬壳猎物,将它们砸向岩石等坚硬表面以打开外壳获取里面的肉。澳大利亚 Macquarie 大学的 Juliette Tariel-Adam 博士称,鱼能使用工具证明它比人类以为的更聪明。研究人员收集了五种海猪鱼属(Halichoeres)隆头鱼的 16 个新观察结果。