Aggregator

A vulnerability was found in Web Reference Database up to 0.9.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument referrer leads to open redirect. This vulnerability is known as CVE-2015-6012. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in net-snmp. This issue affects the function snmp_pdu_parse. The manipulation leads to data processing error. The identification of this vulnerability is CVE-2015-5621. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

rufusdomando Has Allegedly Leaked the Data of Traumatology of Comahue

A vulnerability, which was classified as critical, has been found in Adobe Flash Player up to 11.2.202.548/18.0.0.261/19.0.0.245. Affected by this issue is some unknown functionality. The manipulation leads to numeric error. This vulnerability is handled as CVE-2015-8445. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

radare2 是一款命令行下的反汇编工具，并提供官方支持的 GUI 项目 iaito。感觉用户群不如另外几家商业产品庞大，不过有竞品对用户来说总是好事。 r2con 是面向 radare2 社区的会议，今年也有一些关于 frida 和移动安全的议题。比如非越狱环境下 frida 在真机和模拟器上的配置，简单的应用加固，分别针对流行框架 Flutter 和 Unity 的逆向案例等。 完整议程在此： https://rada.re/con/2024/ 昨天是 workshop 环节，会棍博主就直接跳过了。来之前还有些紧张。上周瓦伦西亚发生的洪灾让人心有余悸，前几天巴塞罗那也遭遇了暴雨袭击。还好这周末看起来很平静。 主会议日程在巴塞罗那当地时间 9 点开始，对应北京时间下午 16 点。有兴趣的可以挑议题观看免费直播。目前地址还没放出来，到时可以看这个油管频道： https://www.youtube.com/@r2con/streams 啃生肉有困难？Chrome 浏览器现在已经内置了实时翻译中文字幕的功能，右上角点两下即可开启。

radare2 是一款命令行下的反汇编工具，并提供官方支持的 GUI 项目 iaito。感觉用户群不如另外几家商业产品庞大，不过有竞品对用户来说总是好事。 r2con 是面向 radare2 社区的会议，今年也有一些关于 frida 和移动安全的议题。比如非越狱环境下 frida 在真机和模拟器上的配置，简单的应用加固，分别针对流行框架 Flutter 和 Unity 的逆向案例等。 完整议程在此： https://rada.re/con/2024/ 昨天是 workshop 环节，会棍博主就直接跳过了。来之前还有些紧张。上周瓦伦西亚发生的洪灾让人心有余悸，前几天巴塞罗那也遭遇了暴雨袭击。还好这周末看起来很平静。 主会议日程在巴塞罗那当地时间 9 点开始，对应北京时间下午 16 点。有兴趣的可以挑议题观看免费直播。目前地址还没放出来，到时可以看这个油管频道： https://www.youtube.com/@r2con/streams 啃生肉有困难？Chrome 浏览器现在已经内置了实时翻译中文字幕的功能，右上角点两下即可开启。

radare2 是一款命令行下的反汇编工具，并提供官方支持的 GUI 项目 iaito。感觉用户群不如另外几家商业产品庞大，不过有竞品对用户来说总是好事。 r2con 是面向 radare2 社区的会议，今年也有一些关于 frida 和移动安全的议题。比如非越狱环境下 frida 在真机和模拟器上的配置，简单的应用加固，分别针对流行框架 Flutter 和 Unity 的逆向案例等。 完整议程在此： https://rada.re/con/2024/ 昨天是 workshop 环节，会棍博主就直接跳过了。来之前还有些紧张。上周瓦伦西亚发生的洪灾让人心有余悸，前几天巴塞罗那也遭遇了暴雨袭击。还好这周末看起来很平静。 主会议日程在巴塞罗那当地时间 9 点开始，对应北京时间下午 16 点。有兴趣的可以挑议题观看免费直播。目前地址还没放出来，到时可以看这个油管频道： https://www.youtube.com/@r2con/streams 啃生肉有困难？Chrome 浏览器现在已经内置了实时翻译中文字幕的功能，右上角点两下即可开启。

radare2 是一款命令行下的反汇编工具，并提供官方支持的 GUI 项目 iaito。感觉用户群不如另外几家商业产品庞大，不过有竞品对用户来说总是好事。 r2con 是面向 radare2 社区的会议，今年也有一些关于 frida 和移动安全的议题。比如非越狱环境下 frida 在真机和模拟器上的配置，简单的应用加固，分别针对流行框架 Flutter 和 Unity 的逆向案例等。 完整议程在此： https://rada.re/con/2024/ 昨天是 workshop 环节，会棍博主就直接跳过了。来之前还有些紧张。上周瓦伦西亚发生的洪灾让人心有余悸，前几天巴塞罗那也遭遇了暴雨袭击。还好这周末看起来很平静。 主会议日程在巴塞罗那当地时间 9 点开始，对应北京时间下午 16 点。有兴趣的可以挑议题观看免费直播。目前地址还没放出来，到时可以看这个油管频道： https://www.youtube.com/@r2con/streams 啃生肉有困难？Chrome 浏览器现在已经内置了实时翻译中文字幕的功能，右上角点两下即可开启。

radare2 是一款命令行下的反汇编工具，并提供官方支持的 GUI 项目 iaito。感觉用户群不如另外几家商业产品庞大，不过有竞品对用户来说总是好事。 r2con 是面向 radare2 社区的会议，今年也有一些关于 frida 和移动安全的议题。比如非越狱环境下 frida 在真机和模拟器上的配置，简单的应用加固，分别针对流行框架 Flutter 和 Unity 的逆向案例等。 完整议程在此： https://rada.re/con/2024/ 昨天是 workshop 环节，会棍博主就直接跳过了。来之前还有些紧张。上周瓦伦西亚发生的洪灾让人心有余悸，前几天巴塞罗那也遭遇了暴雨袭击。还好这周末看起来很平静。 主会议日程在巴塞罗那当地时间 9 点开始，对应北京时间下午 16 点。有兴趣的可以挑议题观看免费直播。目前地址还没放出来，到时可以看这个油管频道： https://www.youtube.com/@r2con/streams 啃生肉有困难？Chrome 浏览器现在已经内置了实时翻译中文字幕的功能，右上角点两下即可开启。

radare2 是一款命令行下的反汇编工具，并提供官方支持的 GUI 项目 iaito。感觉用户群不如另外几家商业产品庞大，不过有竞品对用户来说总是好事。 r2con 是面向 radare2 社区的会议，今年也有一些关于 frida 和移动安全的议题。比如非越狱环境下 frida 在真机和模拟器上的配置，简单的应用加固，分别针对流行框架 Flutter 和 Unity 的逆向案例等。 完整议程在此： https://rada.re/con/2024/ 昨天是 workshop 环节，会棍博主就直接跳过了。来之前还有些紧张。上周瓦伦西亚发生的洪灾让人心有余悸，前几天巴塞罗那也遭遇了暴雨袭击。还好这周末看起来很平静。 主会议日程在巴塞罗那当地时间 9 点开始，对应北京时间下午 16 点。有兴趣的可以挑议题观看免费直播。目前地址还没放出来，到时可以看这个油管频道： https://www.youtube.com/@r2con/streams 啃生肉有困难？Chrome 浏览器现在已经内置了实时翻译中文字幕的功能，右上角点两下即可开启。

A vulnerability was found in CE21 Suite Plugin up to 2.2.0 on WordPress and classified as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to missing authorization. The identification of this vulnerability is CVE-2024-10294. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in Th Shop Mania Plugin up to 1.4.9 on WordPress and classified as critical. This vulnerability affects unknown code of the component Plugin Installation Handler. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-10674. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in Top Store Plugin up to 1.5.4 on WordPress. This affects an unknown part of the component Plugin Installation Handler. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2024-10673. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Contact Form 7 Plugin up to 2.3.1 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-10683. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical was found in Code Embed Plugin up to 2.5 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to server-side request forgery. This vulnerability is known as CVE-2024-10814. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as critical has been found in WP Membership Plugin up to 1.6.2 on WordPress. Affected is an unknown function. The manipulation leads to unrestricted upload. This vulnerability is traded as CVE-2024-10547. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in SKT Addons for Elementor Plugin up to 3.3 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2024-10693. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Countdown Timer Block Plugin up to 1.2.4 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Post Handler. The manipulation leads to information disclosure. This vulnerability was named CVE-2024-10669. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in WooCommerce Support Ticket System Plugin up to 17.7 on WordPress. It has been classified as critical. This affects an unknown part. The manipulation leads to unrestricted upload. This vulnerability is uniquely identified as CVE-2024-10627. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Poll Maker Plugin up to 5.4.6 on WordPress and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to sql injection. This vulnerability is handled as CVE-2024-9874. The attack may be launched remotely. There is no exploit available.