Aggregator
CVE-2025-13191 | D-Link DIR-816L 2_06_b09_beta /soap.cgi soapcgi_main stack-based overflow (EUVD-2025-197697)
CVE-2025-13199 | code-projects Email Logging Interface 2.0 signup.cpp Username path traversal (EUVD-2025-197700)
CVE-2025-13202 | code-projects Simple Cafe Ordering System 1.0 /add_to_cart product_name cross site scripting (EUVD-2025-197703)
CVE-2025-13240 | code-projects Student Information System 2.0 /searchquery.php sql injection (EUVD-2025-197720)
CVE-2025-13242 | code-projects Student Information System 2.0 /register.php sql injection (EUVD-2025-197721)
CVE-2025-13243 | code-projects Student Information System 2.0 /editprofile.php sql injection (EUVD-2025-197725)
CVE-2025-7736 | GitLab Community Edition/Enterprise Edition up to 18.3.5/18.4.3/18.5.1 OAuth authorization (Patch 556098 / EUVD-2025-197694)
«Привет, это я». Как безобидное сообщение в WhatsApp лишает пользователей всех сбережений
公安部计算机信息系统安全产品质量监督检验中心检测发现40款违法违规收集使用个人信息的移动应用
Finger协议遭滥用 沦为 ClickFix 恶意软件攻击工具
2025网络安全“金帽子”年度评选 | 投票通道开放中,敬请投票助力!
Finger协议遭滥用 沦为 ClickFix 恶意软件攻击工具
2025网络安全“金帽子”年度评选 | 投票通道开放中,敬请投票助力!
公安部计算机信息系统安全产品质量监督检验中心检测发现40款违法违规收集使用个人信息的移动应用
Google Play Store’s privacy practices still confuse Android users
Privacy rules like GDPR and CCPA are meant to help app stores be clearer about how apps use your data. But in the Google Play Store, those privacy sections often leave people scratching their heads. A new study looks at how users read these parts of an app listing and how their reactions affect the risks they believe they are taking. The study setup The researchers built a controlled web environment that mimicked the Google … More →
The post Google Play Store’s privacy practices still confuse Android users appeared first on Help Net Security.
BlueCodeAgent helps developers secure AI-generated code
When AI models generate code, they deliver power and risk at the same time for security teams. That tension is at the heart of the new tool called BlueCodeAgent, designed to help developers and security engineers defend against code-generation threats. Why code generation raises concern LLMs are increasingly used in software development for tasks like generating functions, scripts and APIs. But these systems can expose an organization to new risks. A Microsoft blog post explains … More →
The post BlueCodeAgent helps developers secure AI-generated code appeared first on Help Net Security.