Aggregator

Зачем переплачивать за стилер, если теперь он доступен бесплатно?

在网上，有好多能把 Linux 系统重装成 Windows 系统的脚本。但是呢，能把 Windows 系统重装成 Linux 系统的脚本特别少。萌咖的 dd 脚本，因为它所在的服务器停用了，相关...

A vulnerability was found in SMA Sunny Central SC 1760-US, Sunny Central SC 1850-US, Sunny Central SC 2000 EV-US, Sunny Central SC 2000-US, Sunny Central SC-2200-10, Sunny Central SC 2200-US, Sunny Central SC-2475-10, Sunny Central SC 2500 EV-US, Sunny Central SC 2660 UP, Sunny Central SC 2660 UP-US, Sunny Central SC 2750 EV-US, Sunny Central SC 2750 UP-US, Sunny Central SC 2800 UP, Sunny Central SC 2800 UP-US, Sunny Central SC 2930 UP, Sunny Central SC 2930 UP-US, Sunny Central SC 3060 UP, Sunny Central SC 3060 UP-US, Sunny Central SC 4000 UP, Sunny Central SC 4000 UP-US, Sunny Central SC 4200 UP, Sunny Central SC 4200 UP-US, Sunny Central SC 4400 UP, Sunny Central SC 4400 UP-JP, Sunny Central SC 4400 UP-US, Sunny Central SC 4600 UP, Sunny Central SC 4600 UP-US, Sunny Central Storage SCS-1900-10, Sunny Central Storage SCS-2200-10, Sunny Central Storage SCS 2300 UP-XT, Sunny Central Storage SCS 2300 UP-XT-US, Sunny Central Storage SCS 2400 UP-XT, Sunny Central Storage SCS 2400 UP-XT-US, Sunny Central Storage SCS-2475-10, Sunny Central Storage SCS 2530 UP-XT, Sunny Central Storage SCS 2530 UP-XT-US, Sunny Central Storage SCS 2630 UP-XT, Sunny Central Storage SCS 2630 UP-XT-US, Sunny Central Storage SCS-2900-10, Sunny Central Storage SCS 3450 UP, Sunny Central Storage SCS 3450 UP-US, Sunny Central Storage SCS 3450 UP-XT, Sunny Central Storage SCS 3450 UP-XT-JP, Sunny Central Storage SCS 3450 UP-XT-US, Sunny Central Storage SCS 3600 UP, Sunny Central Storage SCS 3600 UP-US, Sunny Central Storage SCS 3600 UP-XT, Sunny Central Storage SCS 3600 UP-XT-US, Sunny Central Storage SCS 3800 UP, Sunny Central Storage SCS 3800 UP-US, Sunny Central Storage SCS 3800 UP-XT, Sunny Central Storage SCS 3800 UP-XT-US, Sunny Central Storage SCS 3950 UP, Sunny Central Storage SCS 3950 UP-US, Sunny Central Storage SCS 3950 UP-XT and Sunny Central Storage SCS 3950 UP-XT-US. It has been rated as critical. Affected by this issue is some unknown functionality of the component Administration Panel. The manipulation leads to sql injection. This vulnerability is handled as CVE-2024-11025. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

In this article, ANY.RUN‘s analyst team will explore a malicious loader known as PSLoramyra. This advanced malware leverages PowerShell, VBS, and BAT scripts to inject malicious payloads into a system, execute them directly in memory, and establish persistent access.   Classified as a fileless loader, PSLoramyra bypasses traditional detection methods by loading its primary payload entirely […]

The post PSLoramyra: Technical Analysis of Fileless Malware Loader appeared first on ANY.RUN's Cybersecurity Blog.

A vulnerability was found in Zyxel ATP, USG FLEX, USG FLEX 50(W) and USG20(W)-VPN up to 5.38. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component URL Handler. The manipulation leads to path traversal. This vulnerability is known as CVE-2024-11667. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Zoho ManageEngine Analytics Plus up to 6099. It has been classified as problematic. Affected is an unknown function. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2024-52323. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

很多人白嫖了 Oracle ARM 架构的服务器不知道放点啥，用来搭建 MTP 代理，却很容易失败，遇到各种错误阻碍，今天简单整理下在 ARM 架构下搭建 MTProxy 的方法教程。MTPro...

A vulnerability was found in Apache James Server 2.3.2. It has been classified as critical. This affects an unknown part. The manipulation leads to os command injection. This vulnerability is uniquely identified as CVE-2015-7611. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

近日，一起大规模的数据泄露事件震动了网络安全界。名为“HikkI-Chan”的黑客在臭名昭著的Breach Forums上泄露了超过3.9亿VK用户的个人信息。

De multinationale gevechtsgroep van de enhanced Forward Presence in Litouwen maakte deel uit van de parade voor de Lithuanian Armed Forces Day. Ook Nederlandse militairen namen deel aan het eerbetoon. De internationale troepenmacht toonde zo haar solidariteit met de bevolking. Een overzicht van Defensieoperaties in de week van 20 tot en met 26 november 2024.

Russia-backed hackers, known as RomCom, have exploited critical zero-day vulnerabilities in Mozilla Firefox and Windows to launch targeted attacks

A vulnerability, which was classified as critical, was found in Ninjadesigns Flatchat 3.0. Affected is an unknown function of the file pmscript.php. The manipulation of the argument with leads to path traversal. This vulnerability is traded as CVE-2009-1486. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in EcShop 2.5.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file user.php. The manipulation of the argument order_sn leads to sql injection. This vulnerability is handled as CVE-2009-1622. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Dew-code Dew-NewPHPLinks 2.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument show leads to path traversal. This vulnerability was named CVE-2009-1624. The attack can be initiated remotely. Furthermore, there is an exploit available.