Aggregator

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063文 | 丹麦奥胡斯大学荣誉教授，互联网名称与数字地址分配机构（ICANN）前董事会成员 沃尔夫冈·科纳沃茨特2024年9

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063中共中央办公厅 国务院办公厅关于数字贸易改革创新发展的意见（2024年8月17日）数字贸易是数字经济的重要组成部分，已成

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

A vulnerability, which was classified as problematic, has been found in Apache Pluto 3.0.0/3.0.1. Affected by this issue is some unknown functionality of the component Chat Room Demo Portlet. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2019-0186. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A new phishing-as-a-service (PhaaS) platform named 'Rockstar 2FA' has emerged, facilitating large-scale adversary-in-the-middle (AiTM) attacks to steal Microsoft 365 credentials. [...]

A vulnerability was found in Jimmy The Includer 1.1. It has been declared as critical. This vulnerability affects unknown code of the file includer.cgi. The manipulation of the argument template leads to improper privilege management. This vulnerability was named CVE-2005-0689. The attack can be initiated remotely. Furthermore, there is an exploit available.

IT threat evolution in Q3 2024IT threat evolution in Q3 2024. Non-mobile statisticsI

IT threat evolution in Q3 2024IT threat evolution in Q3 2024. Non-mobile statisticsI

IT threat evolution in Q3 2024IT threat evolution in Q3 2024. Non-mobile statisticsI

The lines between digital and physical realms increasingly blur. While this opens countless opportu

Systemadminbd Targeted the Website of Hindu College

One of the three blockchain trilemmas is interoperability. ( That's just a fancy way of saying that

A vulnerability classified as critical has been found in OpenSSH up to 7.3. Affected is an unknown function of the component Unix-Domain Socket Handler. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2016-10010. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Wireshark. Affected is an unknown function of the component Bluetooth. The manipulation leads to numeric error. This vulnerability is traded as CVE-2012-3825. Access to the local network is required for this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Diangemilang DGNews 3.0 Beta. This affects an unknown part of the file berita.php. The manipulation of the argument id leads to sql injection. This vulnerability is uniquely identified as CVE-2009-1746. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Phpeasycode PAD Site Scripts 3.6. This affects an unknown part. The manipulation of the argument cookie leads to improper input validation. This vulnerability is uniquely identified as CVE-2009-1739. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Omnisoftsol VidSharePro. This affects an unknown part of the component File Upload. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2009-1750. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Com Gsticketsystem on Joomla. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument catid leads to sql injection. This vulnerability is traded as CVE-2009-1736. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

一名独立研究员近期发现了Windows操作系统中ksthunk.sys驱动程序的严重漏洞，该驱动程序负责32位与64位进程间的通信，此漏洞允许攻击者通过整数溢出实现权限提升。该研究员近日在Typhoo