Aggregator
CVE-2025-65222 | Tenda AC21 16.03.08.16 SetSysAutoRebbotCfg rebootTime buffer overflow
CVE-2025-65221 | Tenda AC21 16.03.08.16 /goform/setPptpUserList list buffer overflow
CVE-2025-65226 | Tenda AC21 16.03.08.16 saveParentControlInfo deviceId buffer overflow
CVE-2025-0643 | Narkom Pyxis Signage up to 31012025 cross site scripting
CVE-2025-60796 | phpPgAdmin up to 7.13.0 sequences.php cross site scripting
CVE-2025-60799 | phpPgAdmin up to 7.13.0 sql.php sqlquery cross site scripting
CVE-2025-60794 | couch-auth up to 0.21.2 src/user.ts information disclosure
CVE-2025-0645 | Narkom Pyxis Signage up to 31012025 unrestricted upload
CVE-2025-60798 | phpPgAdmin up to 7.13.0 display.php browseQuery sql injection
CVE-2025-60797 | phpPgAdmin up to 7.13.0 dataexport.php Query sql injection
黑客团伙如何用树莓派入侵银行ATM系统并取款数年
CVE-2025-60738 | Ilevia EVE X1 Server up to 6.00 2025_07_21 ping.php privilege escalation
Security gap in Perplexity’s Comet browser exposed users to system-level attacks
There is a serious security problem inside Comet, the AI-powered agentic browser made by Perplexity, SquareX researchers say: Comet’s MCP API allows the browser’s built-in (but hidden from the user) extensions to issue commands directly to a user’s device, and the capability can be leveraged by attackers. Comet can run applications, read files and modify data on the local system. “Old-school” browsers normally block this level of access, but (some) AI-powered browsers are effectively braking … More →
The post Security gap in Perplexity’s Comet browser exposed users to system-level attacks appeared first on Help Net Security.
D-Link warns of new RCE flaws in end-of-life DIR-878 routers
大脑处理不同语言的基本语音的方式相同
Конец проводов в мозгу навсегда. Нейрочип MOTE питается светом, читает ваши мысли год подряд и передаёт их… световыми вспышками
Работа над ошибками. Xubuntu опубликовала анатомию взлома своего сайта
Turn your Windows 11 migration into a security opportunity
Trust Beyond Containers: Identity and Agent Security Lessons from KubeCon 2025
From secure service mesh rollouts to AI cluster hardening, see how KubeCon + CloudNativeCon NA 2025 redefined identity, trust, and governance in Kubernetes environments.
The post Trust Beyond Containers: Identity and Agent Security Lessons from KubeCon 2025 appeared first on Security Boulevard.