更新第四章:漏洞分析与利用 | 系统0day安全-IOT设备漏洞挖掘(第6期)
录播+直播
动手实践,实现从0到1的跨越
Aggregator
4chan 遭黑客攻击,源代码与版主信息泄露,网站陷入瘫痪
11 months ago
4chan 遭竞争对手 Soyjak.st 黑客攻击,源代码及版主信息泄露,网站陷入瘫痪。
腾讯2025游戏安全PC方向初赛题解
11 months ago
看雪论坛作者ID:moshuiD
Defensie en NOC*NSF willen een weerbaar en fit Nederland
11 months ago
Defensie en het Nederlands Olympisch Comité en de Nederlandse Sport Federatie (NOC*NSF) delen hetzelfde doel: zorgen dat Nederlanders weerbaar, fitter en vitaler worden. Daarom werken ze vanaf nu nauwer samen om de kracht van sport te benutten. Dat is vandaag met handtekeningen bekrachtigd in het ministerie van Defensie in Den Haag.
Chrome 安全更新:CVE-2025-3619 和 CVE-2025-3620 漏洞亟待修复
11 months ago
安全客
“全能黑客工具”Xanthorox AI:自进化AI武器的威胁与防御破局
11 months ago
该工具被宣传为“WormGPT与所有EvilGPT变种的杀手”,其核心卖点在于完全独立的多模型架构、模块化设计及离线操作能力。
信息盗取的隐性威胁:Rhadamanthys木马无痕窃密
11 months ago
近期,火绒工程师在日常监测安全动态时发现,Rhadamanthys 窃密木马家族包含多种模块。这些模块采用自定义的 PE 结构,与正常的 PE 结构相似,因此需要手动构造 PE 文件进行分析。
【落地有声】专栏第三期:开发安全建设融入业务场景的重难点解析与应对
11 months ago
这不仅仅是简单的技术问题
【落地有声】专栏第三期:开发安全建设融入业务场景的重难点解析与应对
11 months ago
这不仅仅是简单的技术问题
CVE-2024-2031 | Video Conferencing with Zoom Plugin up to 4.4.4 on WordPress Shortcode cross site scripting (ID 3048838)
11 months ago
A vulnerability has been found in Video Conferencing with Zoom Plugin up to 4.4.4 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-2031. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-1582 | WP Go Maps Plugin up to 9.0.32 on WordPress Shortcode cross site scripting (ID 3045434)
11 months ago
A vulnerability was found in WP Go Maps Plugin up to 9.0.32 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Shortcode Handler. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2024-1582. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-0966 | Shariff Wrapper Plugin up to 4.6.9 on WordPress cross site scripting
11 months ago
A vulnerability classified as problematic has been found in Shariff Wrapper Plugin up to 4.6.9 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-0966. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-26930 | Home Services Theme up to 1.2.6 on WordPress Home Service cross site scripting
11 months ago
A vulnerability has been found in Home Services Theme up to 1.2.6 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Home Service. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2025-26930. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2025-26934 | Glossy Blog Theme up to 1.0.3 on WordPress cross site scripting
11 months ago
A vulnerability was found in Glossy Blog Theme up to 1.0.3 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2025-26934. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-26919 | Tainá Theme up to 0.2.2 on WordPress cross site scripting
11 months ago
A vulnerability classified as problematic has been found in Tainá Theme up to 0.2.2 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2025-26919. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-26748 | Arkhe Theme up to 3.11.0 on WordPress cross-site request forgery
11 months ago
A vulnerability classified as problematic has been found in Arkhe Theme up to 3.11.0 on WordPress. This affects an unknown part. The manipulation leads to cross-site request forgery.
This vulnerability is uniquely identified as CVE-2025-26748. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-22263 | Global Gallery Plugin up to 8.8.0 on WordPress cross site scripting
11 months ago
A vulnerability classified as problematic was found in Global Gallery Plugin up to 8.8.0 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2025-22263. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-26903 | InPost Gallery Plugin up to 2.1.4.3 on WordPress cross-site request forgery
11 months ago
A vulnerability, which was classified as problematic, has been found in InPost Gallery Plugin up to 2.1.4.3 on WordPress. This issue affects some unknown processing. The manipulation leads to cross-site request forgery.
The identification of this vulnerability is CVE-2025-26903. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2025-26746 | Advanced Custom Fields Plugin up to 1.2.8 on WordPress cross site scripting
11 months ago
A vulnerability was found in Advanced Custom Fields Plugin up to 1.2.8 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-26746. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-26857 | Growatt Cloud Applications up to 3.5.x authorization (icsa-25-105-04)
11 months ago
A vulnerability was found in Growatt Cloud Applications up to 3.5.x. It has been classified as problematic. Affected is an unknown function. The manipulation leads to authorization bypass.
This vulnerability is traded as CVE-2025-26857. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com