Aggregator

Submit #574105 / VDB-236365

Когда просто «прочитать» письмо значит отдать пароли, контакты и государственные тайны.

本文探索了JDBC MySQL驱动在利用临时文件进行不出网环境下的反序列化利用，改变了攻击MySQL驱动需要外连FakeServer的传统攻击手法，这种利用方式在realworld中具有更加隐蔽的特性。而文章后半段提到的临时文件部分可以无条件将一个纯净的文件上传到目标服务器并确定位置，对于需要本地文件的攻击（如：ClassPathXmlApplicationContext加载本地XML、加载本地类

从 Antlr4 前端转向 Typescript-Go 的思路分享！

30个蓝中！！！

TsojanScan一个集成的BurpSuite漏洞探测插件。TsojanSecTeam成员决定在已有框架的基础上修改并增加常用的漏洞探测POC，它会以最少的数据包请求来准确检测各漏洞存在与否，你只需要这一个足矣。

Submit #574082 / VDB-309272

Submit #574081 / VDB-309271

A vulnerability, which was classified as critical, was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. Affected is an unknown function of the file /edit-phlebotomist.php. The manipulation of the argument mobilenumber leads to sql injection. This vulnerability is traded as CVE-2025-4813. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. The identification of this vulnerability is CVE-2025-4812. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Ollama server up to 0.5.11. This vulnerability affects unknown code of the file /api/pull. The manipulation leads to improper validation of array index. This vulnerability was named CVE-2025-1975. The attack can be initiated remotely. There is no exploit available.

SonicWall has issued a critical security advisory (SNWLID-2025-0010) for its SMA1000 Appliance Work Place interface, revealing a high-severity Server-Side Request Forgery (SSRF) vulnerability. The flaw, identified as CVE-2025-40595 with a CVSS v3 score of 7.2, enables unauthenticated attackers to exploit encoded URLs to send unauthorized requests to unintended destinations, potentially compromising internal networks and sensitive […]

The post SonicWall SMA1000 Vulnerability Allow Attackers to Exploit Encoded URLs To Remotely Gain Internal Systems Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #573888 / VDB-309270

Submit #573886 / VDB-309269

A vulnerability classified as problematic has been found in Synology Active Backup for Microsoft 365. This affects an unknown part. The manipulation leads to insufficiently protected credentials. This vulnerability is uniquely identified as CVE-2025-4679. It is possible to initiate the attack remotely. There is no exploit available. This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

Submit #573896 / VDB-299872

Submit #573895 / VDB-298555

Submit #573875 / VDB-307406

A vulnerability was found in CodeAstro Pharmacy Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /index.php of the component Login. The manipulation of the argument Username leads to sql injection. This vulnerability is handled as CVE-2025-4811. The attack may be launched remotely. Furthermore, there is an exploit available.

Hackers are stepping up their attacks on Industrial Control Systems (ICS) in the first quarter of 2025, employing an arsenal of 11,679 different malware families. This is a worrying development for industrial cybersecurity. According to a Kaspersky security solutions Report, the persistence of cyber threats targeting operational technology (OT) infrastructures remains a critical issue. While […]

The post Hackers Target Industrial Automation Systems Using Over 11,600 Malware Variants appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.