Aggregator

Submit #472186 / VDB-289830

Submit #472185 / VDB-289829

Submit #472183 / VDB-289828

Submit #472181 / VDB-289827

水獭作为少数派的吉祥物，经常来访问少数派的读者应该已经相当的熟悉了，不管你习惯称呼它叫「獭」、「水獭」还是「吃派的水獭」，都好像显得不那么像一个正式的名字，而随着我们更多的业务发展需要，无论是哪个

A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-services.php of the component Customer Detail Handler. The manipulation of the argument sids[] leads to sql injection. This vulnerability is handled as CVE-2024-13072. The attack may be launched remotely. Furthermore, there is an exploit available.

主站 分类 漏洞 工具 极客

本次全景册面向广大国内安全厂商，由厂商自主申报并填写信息征集表，为企业安全建设及产品选型提供参考。

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/update_users.php of the component Update User Page. The manipulation of the argument user_upd leads to sql injection. This vulnerability is known as CVE-2024-13070. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in SourceCodester Multi Role Login System 1.0. It has been classified as problematic. Affected is an unknown function of the file /endpoint/add-user.php. The manipulation of the argument name leads to cross site scripting. This vulnerability is traded as CVE-2024-13069. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #472165 / VDB-289826

Overview The Cyber Security Agency of Singapore (CSA) has alerted users of multiple vulne

Submit #472147 / VDB-286014

Submit #472104 / VDB-289825

Submit #469520 / VDB-289824

数不清是第几场雪了。 漫天白云被揉碎成雪子，零落地撒

A vulnerability was found in CodeAstro Online Food Ordering System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/all_users.php of the component All Users Page. The manipulation leads to improper access controls. The identification of this vulnerability is CVE-2024-13067. The attack may be initiated remotely. Furthermore, there is an exploit available.

Submit #472081 / VDB-289823

社区速递 075 | 你没见过的社区文章、一周最热评、派友十一月买了啥除了首页时间流和侧栏的精选展位，少数派 Matrix 社区还有很多优秀内容因条件所限无法得到有效曝光，因此我们决定重启 Matri

A vulnerability has been found in CTFd up to 3.7.4 and classified as critical. This vulnerability affects unknown code of the component Token Handler. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-11717. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.