Aggregator

今日暂未更新资讯~
更多最新文章，请访问SecWiki

人在认识世界、改造世界的实践活动中自会形成种种具有积累价值和交流价值的思想和认识，文章总结便是用来完善、固定和

A critical buffer overflow vulnerability in OpenVPN’s data channel offload driver for Windows has been discovered, allowing local attackers to crash Windows systems by sending maliciously crafted control messages. The vulnerability, identified as CVE-2025-50054, affects the ovpn-dco-win driver versions 1.3.0 and earlier, as well as version 2.5.8 and earlier, which has been the default virtual […]

The post Critical OpenVPN Driver Vulnerability Allows Attackers to Crash Windows Systems appeared first on Cyber Security News.

Intel представила шестую версию патчей для поддержки в Linux.

A vulnerability was found in sparklemotion nokogiri up to 1.18.7 and classified as problematic. This issue affects the function hashmap_set_with_hash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. The identification of this vulnerability is CVE-2025-6490. An attack has to be approached locally. Furthermore, there is an exploit available.

Russian hackers bypass multi-factor authentication and access Gmail accounts by leveraging app-specific passwords in advanced social engineering attacks that impersonate U.S. Department of State officials. [...]

Submit #601005 / VDB-313601

A vulnerability has been found in itsourcecode Agri-Trading Online Shopping System 1.0 and classified as critical. This vulnerability affects unknown code of the file /transactionsave.php. The manipulation of the argument del leads to sql injection. This vulnerability was named CVE-2025-6489. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #601190 / VDB-313600

Author/Presenter: Clyde Ford (Author And Software Consultant)

Our sincere appreciation to LinuxFest Northwest (Now Celebrating Their Organizational 25th Anniversary Of Community Excellence), and the Presenters/Authors for publishing their superb LinuxFest Northwest 2025 video content. Originating from the conference’s events located at the Bellingham Technical College in Bellingham, Washington; and via the organizations YouTube channel.

Thanks and a Tip O' The Hat to Verification Labs :: Penetration Testing Specialists :: Trey Blalock GCTI, GWAPT, GCFA, GPEN, GPCS, GCPN, CRISC, CISA, CISM, CISSP, SSCP, CDPSE for recommending and appearing as speaker at the LinuxFest Northwest conference.

Permalink

The post LinuxFest Northwest: The First Black Software Engineer in America: Technology and Race appeared first on Security Boulevard.

关于菲律宾近24小时(2025年06月21日)发展动态的分析报告 一、总体概要 在近24小时内，菲律宾在多个领

文本主要依据的是以色列军方（IDF）、美国官员/机构（如OFAC）、以及倾向于西方观点的分析机构（CTP-ISW）的信息和框架。

焦距“乘数效应”，释放数据价值。

确定了，是 AI 效率工具，和 Email 有关。

A vulnerability, which was classified as problematic, was found in wp-file-download Plugin up to 6.2.5 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-5034. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in IBM InfoSphere Information Server up to 11.7.1.6. Affected by this issue is some unknown functionality. The manipulation leads to improper ownership management. This vulnerability is handled as CVE-2025-3629. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in IBM InfoSphere Information Server up to 11.7.1.6. Affected by this vulnerability is an unknown functionality. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2025-3221. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in IBM Process Mining 2.0.1 IF001/2.0.1. Affected is an unknown function. The manipulation leads to open redirect. This vulnerability is traded as CVE-2025-36016. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Submit #600946 / VDB-309036

1. 背景 小青蛙批量扫站 300多个内网资产 扫了15个小时 扫了35%
2. 第二天优化 脚本，大概2个小时左右就扫完了35%
   设置5个线程同时跑，单个目标大概需要请求1719次好像是，-rl 默认是150，5个设的各20，设置单个目标扫描超时时间1500s，25分钟还没扫完，就扫下一个。

第一个扫描脚本是：afrog_rce.py

import subprocess import concurrent.futures import os import chardet def read_file_auto_encoding(filename): with open(filename, 'rb') as f: raw = f.read() result = chardet.detect(raw) encoding = result['encoding'] or 'utf-8' try: return raw.decode(encoding) except Exception: return raw.decode('utf-8', errors='replace') def run_afrog(url, idx): out_file = f"result_{idx}.html" command = f"afrog.exe -t {url} -oob dnslogcn -o {out_file} -rl 20 -c 5 -timeout 20 -retries 2 " try: print(f"正在扫描: {url} (任务 {idx + 1})") subprocess.run(command, shell=True, check=True, timeout=1500) print(f"成功扫描: {url}") if os.path.exists(out_file): content = read_file_auto_encoding(out_file) print(f"扫描结果 for {url}:\n{content}\n") else: print(f"提示: {url} 扫描完成但未发现漏洞，未生成结果文件") except subprocess.TimeoutExpired: print(f"错误: {url} 扫描超时未完成。") except subprocess.CalledProcessError as e: print(f"错误发生在 {url}: {e}") except Exception as e: print(f"未知错误发生在 {url}: {e}") def main(): if not os.path.exists('url.txt'): print("错误: url.txt 文件不存在") return with open('url.txt', 'r', encoding='utf-8') as file: urls = [line.strip() for line in file if line.strip()] if not urls: print("错误: url.txt 中没有有效的URL") return total_urls = len(urls) with concurrent.futures.ThreadPoolExecutor(max_workers=5) as executor: futures = [] for idx, url in enumerate(urls): futures.append(executor.submit(run_afrog, url, idx)) print(f"已提交任务 {idx + 1}/{total_urls}: {url}") for idx, future in enumerate(concurrent.futures.as_completed(futures)): try: future.result() print(f"任务完成 {idx + 1}/{total_urls}") except Exception as e: print(f"任务处理异常: {e}") def merge_html_files(): all_contents = [] files_merged = 0 for filename in os.listdir('.'): if filename.startswith('result_') and filename.endswith('.html'): try: content = read_file_auto_encoding(filename) all_contents.append(content) files_merged += 1 except Exception as e: print(f"处理文件 {filename} 时出错: {e}") if not all_contents: print("没有找到要合并的结果文件") return with open('jieguo_all.html', 'w', encoding='utf-8') as f: f.write('<!DOCTYPE html>\n<html lang="zh">\n<head>\n<meta charset="UTF-8">\n<title>合并结果</title>\n</head>\n<body>\n') for content in all_contents: f.write('<div>\n') f.write(content) f.write('</div>\n') f.write('</body>\n</html>') print(f"成功合并 {files_merged} 个结果文件到 jieguo_all.html") if __name__ == "__main__": main() merge_html_files() print("已全部完成。")

第2个合并结果脚本是：afrog_jieguo.py

import subprocess import concurrent.futures import os import chardet def read_file_auto_encoding(filename): with open(filename, 'rb') as f: raw = f.read() result = chardet.detect(raw) encoding = result['encoding'] or 'utf-8' try: return raw.decode(encoding) except Exception: return raw.decode('utf-8', errors='replace') def merge_html_files(): all_contents = [] files_merged = 0 for filename in os.listdir('.'): if filename.startswith('result_') and filename.endswith('.html'): try: content = read_file_auto_encoding(filename) all_contents.append(content) os.remove(filename) files_merged += 1 print(f"已合并并删除文件: {filename}") except Exception as e: print(f"处理文件 {filename} 时出错: {e}") if not all_contents: print("没有找到要合并的结果文件") return with open('jieguo_all.html', 'w', encoding='utf-8') as f: f.write('<!DOCTYPE html>\n<html lang="zh">\n<head>\n<meta charset="UTF-8">\n<title>合并结果</title>\n</head>\n<body>\n') for content in all_contents: f.write('<div>\n') f.write(content) f.write('</div>\n') f.write('</body>\n</html>') print(f"成功合并 {files_merged} 个结果文件到 jieguo_all.html") if __name__ == "__main__": merge_html_files()

1 个帖子 - 1 位参与者

阅读完整话题