Aggregator

Threat Actors Deploy Obfuscation Tactics to Targets Windows Machines
Likely Chinese nation-state hackers are targeting European companies using previously unseen malware backdoor variants with advanced network tunneling and evasion capabilities for data theft. Brussels-based security firm Nviso links the campaign to a threat actor tracked as UNC5221.

Ransomware Gang Qilin Claims to Have 42GB of Practice's Stolen Data
Ransomware group Qilin posted at least 42 gigabytes of data stolen from a Texas pediatric orthopedic practice for sale on its darkweb leak site in February. In recent days, Central Texas Pediatric Orthopedics began notifying more than 140,000 people that their data was compromised by hackers.

Malware Hides in Memory, Evades Detection by Endpoint Tools
A Chinese state-backed hacking group tracked as UNC5174 relaunched its operations after a year of silence with a campaign using a memory-only remote access Trojan that evades traditional detection mechanisms, according to new research from cybersecurity firm Sysdig.

Complaint Says Russia-Based IP Address Attempted to Gain Access as DOGE Took Data
A whistleblower has accused staffers from the Department of Government Efficiency of attempting to cover their tracks while collecting troves of sensitive data from the independent labor agency's computer systems, raising significant security concerns.

A vulnerability, which was classified as critical, was found in Dell Alienware Command Center 5.5.51.0/5.8.2.0/6.2.7.0. Affected is an unknown function. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2025-30100. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

Google has issued an urgent security update for its Chrome browser after two critical vulnerabilities were discovered. These vulnerabilities could allow attackers to steal sensitive data and gain unauthorized access to users’ systems. The flaws, identified as CVE-2025-3619 and CVE-2025-3620, affect Chrome versions prior to 135.0.7049.95/.96 for Windows and Mac and 135.0.7049.95 for Linux. The […]

The post Critical Chrome Vulnerability Let Attackers Steal Data & Gain Unauthorized Access appeared first on Cyber Security News.

在一次项目中遇到某java开源系统，遂对其进行漏洞挖掘。

hrms中存在未授权获取信息漏洞，该漏洞是由于系统在数据库查询时权限验证存在缺陷，攻击者通过构造 cookies 绕过权限验证，从而造成未经授权访问漏洞。

A vulnerability, which was classified as critical, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This issue affects some unknown processing of the file /edit-product.php. The manipulation of the argument ID leads to sql injection. The identification of this vulnerability is CVE-2025-3697. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product Management System 1.0. This vulnerability affects unknown code of the file /search/search_stock. php. The manipulation of the argument Name leads to sql injection. This vulnerability was named CVE-2025-3696. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This affects an unknown part of the component Login Handler. The manipulation of the argument login_email leads to sql injection. This vulnerability is uniquely identified as CVE-2025-3694. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Submit #553624 / VDB-304985

Submit #553579 / VDB-304984

Submit #553568 / VDB-304983

A vulnerability was found in Tenda W12 3.0.0.5. It has been rated as critical. Affected by this issue is the function cgiWifiRadioSet of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2025-3693. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /oews/classes/Master.php?f=save_product. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2025-3692. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in mirweiye Seven Bears Library CMS 2023. It has been classified as problematic. Affected is an unknown function of the component Add Link Handler. The manipulation leads to server-side request forgery. This vulnerability is traded as CVE-2025-3691. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #553526 / VDB-304982

Submit #553520 / VDB-304981