Aggregator

Submit #570967 / VDB-309045

Submit #570965 / VDB-309044

Submit #570963 / VDB-309043

A vulnerability classified as problematic has been found in XU-YIJIE grpo-flat up to 9024b43f091e2eb9bac65802b120c0b35f9ba856. Affected is the function main of the file grpo_vanilla.py. The manipulation leads to deserialization. This vulnerability is traded as CVE-2025-4742. Local access is required to approach this attack. There is no exploit available. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.

Всё начинается с безобидного клика, а заканчивается bash-процессом в фоне.

A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /pages/purchase_add.php. The manipulation of the argument ID leads to sql injection. The identification of this vulnerability is CVE-2025-4741. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in BeamCtrl Airiana up to 11.0. It has been declared as problematic. This vulnerability affects unknown code of the file coef. The manipulation leads to deserialization. This vulnerability was named CVE-2025-4740. The attack needs to be approached locally. Furthermore, there is an exploit available.

Submit #570923 / VDB-309042

A vulnerability was found in projectworlds Hospital Database Management System 1.0. It has been classified as critical. This affects an unknown part of the file /medicines_info.php. The manipulation of the argument Med_ID leads to sql injection. This vulnerability is uniquely identified as CVE-2025-4739. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

数世咨询于今日推出，基于价值理念的《中国数字安全价值图谱》。

Submit #570913 / VDB-309041

The ransomware landscape is more fragmented than ever, with no “market leader,” says William Lyne, Head of Intelligence at the NCA

Submit #570888 / VDB-309040

Submit #570855 / VDB-309039

Kosovar citizen extradited to the US for running the cybercrime marketplace BlackDB.cc appeared in federal court facing related charges. Kosovo citizen Liridon Masurica (33) of Gjilan, was extradited to the US for running the cybercrime marketplace BlackDB.cc and appeared in federal court facing related charges. The online criminal marketplace BlackDB.cc has been active sunce 2018, […]

在PHP中，switch语句如果不加break会导致”case穿透”现象。具体表现如下 […]

印巴间黑客攻击可能会形成“危险的报复循环”

公司主动暂停了多个工厂的部分生产运营

Нарушение затронуло элементы, критически важные для снабжения и логистики.

20 мая на сцену выйдет Александр Антипов и ещё восемь спикеров.