Aggregator

A vulnerability has been found in Django up to 4.2.28/5.2.11/6.0.2 on Windows and classified as problematic. Affected by this issue is the function urllib.parse.urlsplit of the component NFKC Normalization. This manipulation causes resource consumption. This vulnerability is tracked as CVE-2026-25673. The attack is possible to be carried out remotely. No exploit exists. The affected component should be upgraded.

A vulnerability was found in Biosig libbiosig 3.9.2. It has been declared as critical. This issue affects some unknown processing of the component Intan CLP Parser. Executing a manipulation can lead to heap-based buffer overflow. This vulnerability is registered as CVE-2026-22891. It is possible to launch the attack remotely. No exploit is available.

A vulnerability classified as critical was found in PluXml CMS 5.8.21/5.9.0-rc7. Impacted is an unknown function of the component Session Identifier Handler. Executing a manipulation can lead to session fixiation. This vulnerability is handled as CVE-2026-24352. The attack can be executed remotely. There is not any exploit available.

A vulnerability labeled as problematic has been found in jashkenas underscore up to 1.13.7. Affected by this issue is the function _.flatten. The manipulation results in allocation of resources. This vulnerability is cataloged as CVE-2026-27601. The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.

《国际观点》2026年3月9日发文称：美国反战运动在政治混乱中缓慢发展。

以军在过去24小时内连续对德黑兰、伊斯法罕及伊朗南部发动三波大规模空袭，并成功斩首伊朗最高领袖军事秘书。伊朗已发生领导层更迭，穆吉塔巴·哈梅内伊接任最高领袖。德黑兰对海湾地区实施报复，向北约成员国土耳其发射弹道导弹（已拦截）。

A vulnerability has been found in d8s-strings 0.1.0 on Python and classified as critical. This issue affects some unknown processing. The manipulation leads to backdoor. This vulnerability is documented as CVE-2022-43303. The attack requires being on the local network. There is not any exploit available.

A vulnerability categorized as critical has been discovered in d8s-python 0.1.0 on Python. This impacts an unknown function. Executing a manipulation can lead to backdoor. This vulnerability is handled as CVE-2022-44049. The attack can only be done within the local network. There is not any exploit available.

A vulnerability labeled as critical has been found in d8s-stats 0.1.0 on Python. Affected by this vulnerability is an unknown functionality. The manipulation results in backdoor. This vulnerability was named CVE-2022-44051. The attack needs to be approached within the local network. There is no available exploit.

A vulnerability was found in d8s-python 0.1.0 on Python. It has been classified as critical. The affected element is an unknown function. This manipulation causes backdoor. This vulnerability appears as CVE-2022-43305. The attacker needs to be present on the local network. There is no available exploit.

A vulnerability marked as critical has been reported in d8s-dates 0.1.0 on Python. Affected by this issue is some unknown functionality. This manipulation causes backdoor. The identification of this vulnerability is CVE-2022-44052. The attack needs to be done within the local network. There is no exploit available.

Researchers say Iran's MuddyWater hackers targeted US companies and an Israeli software firm’s department in a cyber campaign using the Dindoor malware - All this amid the ongoing conflict.

Теперь игра сделает из вашего хамства образец приличия.

A vulnerability identified as problematic has been detected in Mozilla Focus up to 148.1 on iOS. Impacted is an unknown function of the component Trusted Domain Handler. Performing a manipulation results in improper restriction of rendered ui layers. This vulnerability is reported as CVE-2026-2919. The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in FreeBSD up to 14.4-RC1/p3/p8/p9. This issue affects the function rtsock_msg_buffer. Such manipulation leads to out-of-bounds write. This vulnerability is documented as CVE-2026-3038. The attack can be executed remotely. There is not any exploit available. A patch should be applied to remediate this issue.

A vulnerability was found in Imagination Graphics DDK up to 1.17 RTM/1.18 RTM/23.2 RTM/25.1 RTM. It has been rated as problematic. This vulnerability affects unknown code. This manipulation causes improper handling of insufficient permissions or privileges. This vulnerability is registered as CVE-2026-21736. The attack needs to be launched locally. No exploit is available. Upgrading the affected component is advised.