Aggregator

原域名已变更且将在2024年彻底废弃，请访问 https://govuln.com/news/ 查看新的RSS订阅

In the newly released 2025 State of Pentesting Report, Pentera surveyed 500 CISOs from global enterprises (200 from within the USA) to understand the strategies, tactics, and tools they use to cope with the thousands of security alerts, the persisting breaches and the growing cyber risks they have to handle. The findings reveal a complex picture of progress, challenges, and a shifting mindset

Seven sources tell CyberScoop that a lack of coordination and miscommunication between federal agencies and the telecommunications industry left critical networks exposed to the Chinese hacking group.

The post ‘Whatever we did was not enough’: How Salt Typhoon slipped through the government’s blind spots appeared first on CyberScoop.

在一次项目中遇到了某呼oa，通过绕过各处限制最终拿下目标。

汽车行业重回「规模为王」。

从XSS到"RCE"的PC端利用链构建

最近几年银狐类黑产团伙非常活跃，今年这些黑产团伙会更加活跃，而且仍然会不断的更新自己的攻击样本，采用各种免杀方式，逃避安全厂商的检测，此前大部分银狐黑产团伙使用各种修改版的Gh0st远控作为其攻击武器，远程控制受害者主机之后，进行相关的网络犯罪活动。

A vulnerability was found in Koibox. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /es/dashboard/clientes/ficha/ of the component Profile Picture Handler. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2025-40633. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in TP-Link Archer AX50 1.0.11 Build 2022052. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file conn-indicator. The manipulation leads to stack-based buffer overflow. This vulnerability is known as CVE-2025-40634. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

虽然网上存在许多hook Javanative反序列化的文章，然而却没有针对Hessian反序列化的。本文探究了一种通用性的方式，能够在awdp等线下赛中针对Hessian反序列化进行高效快速的修复。

edu证书站从lfi到控制台接管

5月16日，国家信息安全漏洞库（CNNVD）2024年度工作总结暨优秀表彰大会在中国信息安全测评中心隆重召开。

速修复

A vulnerability was found in Connect-Multiparty 2.2.0 and classified as critical. Affected by this issue is some unknown functionality of the component PDF File Handler. The manipulation leads to unrestricted upload. This vulnerability is handled as CVE-2022-29623. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in 1E Client on Windows and classified as critical. This issue affects some unknown processing. The manipulation leads to link following. The identification of this vulnerability is CVE-2023-45159. The attack needs to be approached locally. There is no exploit available.

A vulnerability was found in 1E Client and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to files or directories accessible. This vulnerability is handled as CVE-2023-45160. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in 1E Platform up to 8.1.2/8.4.1/9.0.1/23.7.1. It has been classified as critical. This affects an unknown part. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2023-45162. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as very critical was found in 1E Platform up to 23 on Windows. Affected by this vulnerability is an unknown functionality of the component URL Parameter Handler. The manipulation leads to improper input validation. This vulnerability is known as CVE-2023-5964. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Canon imageRUNNER ADVANCE, imageRUNNER, imagePRESS V, imagePRESS and imageCLASS. It has been classified as problematic. This affects an unknown part. The manipulation leads to insufficiently protected credentials. This vulnerability is uniquely identified as CVE-2025-3078. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Canon imageRUNNER, imageCLASS, i-sensys and Satera. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to insufficiently protected credentials. This vulnerability was named CVE-2025-3079. The attack can be initiated remotely. There is no exploit available.