Aggregator

A vulnerability has been found in Apple macOS up to 15.1 and classified as critical. This vulnerability affects unknown code of the component kASLR. The manipulation leads to memory corruption. This vulnerability was named CVE-2024-54531. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in PHPGurukul Online Nurse Hiring System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument username leads to sql injection. The identification of this vulnerability is CVE-2024-55099. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Ultimate Blocks Plugin up to 3.2.3 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-10678. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Image Widget Plugin up to 4.4.10 on WordPress. This affects an unknown part of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-10939. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Imagination Technologies Graphics DDK up to 24.2 RTM1. Affected by this issue is some unknown functionality of the component GPU System Call Handler. The manipulation leads to use after free. This vulnerability is handled as CVE-2024-47892. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

Hi everyone, ceres-c here, the newly elected president of MuHack. I’m here togiv

为了实现登录口的自动弱口令尝试，在 github 找了一圈发现已经有小伙伴做了一些研究，项目地址：https://github.com/yzddmr6/WebCrack为此，作者还专门写了一个博客来介

恶意软件的发展趋势

安全分析与研究专注于全球恶意软件的分析与研究前言 笔者从事恶意软件研究十几年了，从05年上大学开始对计算机的病毒研究感兴趣，到后面一直从事与恶意软件相关的工作，涉及到多个不同的平台，分析研究过的恶意软

The first draft of the long-awaited update to the National Cyber Incident Response Plan (NCIRP) was

2025，携手斯元，共同出海！

一起为Web3.0新时代风险与创新平衡作出贡献

在全球化的浪潮中，中国网络安全企业以其创新技术和专业服务，正逐步成为国际舞台上的重要力量。为了更好地让海外客户了解和认识中国的网安企业，斯元Z-ONE精心策划了2025年的全球展会攻略。这一年，我们将

一、概述Web3.0是指下一代互联网，也称为“分布式网络”或“去中心化网络”。与Web1.0和Web2.0不同，在技术上Web3.0的重点在于通过加密技术、智能合约和区块链等技术实现智能的去中心化应用

挑战 OpenAI，谷歌新动作：推出视频模型 VEO 2 和最新版 Imagen3；ChatGPT 搜索功能向全体用户开放，新增语音搜索服务

挑战 OpenAI，谷歌新动作：推出视频模型 VEO 2 和最新版 Imagen312 月 17 日凌晨，谷歌的旗舰 AI 研究实验室 Google DeepMind 推出了 Veo 2 视频生成模型

IntelBroker Has Claimed to Leak Partial Data of Cisco

01阅读须知此文所提供的信息只为网络安全人员对自己所负责的网站、服务器等（包括但不限于）进行检测或维护参考，未经授权请勿利用文章中的技术资料对任何计算机系统进行入侵操作。利用此文所提供的信息而造成的直