比特币币值突破 12 万美元
比特币币值周一突破了 12 万美元(最高 122,571.19 美元,之后小幅回落),创历史新高。美国众议院正在制定加密货币资产相关的国家监管框架,而自称加密货币总统的特朗普则督促议员制定有利于加密货币行业的政策。分析师表示多项利好因素推动了币值上涨。比特币今年迄今已上涨 29%,它的涨势也推动了其它加密货币币值的上涨。
Aggregator
9.6 из 10: Fortinet взломали… изнутри. Уязвимость позволяет писать код прямо в базу
10 months ago
Python и MySQL объединились против FortiWeb в самой изощренной атаке лета.
CVE-2025-7628 | YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd /deleteFile fileName path traversal (Issue 15 / EUVD-2025-21381)
10 months ago
A vulnerability was found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. It has been classified as critical. This affects the function deleteFile of the file /deleteFile. The manipulation of the argument fileName leads to path traversal.
This vulnerability is uniquely identified as CVE-2025-7628. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.
vuldb.com
CVE-2025-7627 | YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd /fileUpload File unrestricted upload (Issue 14 / EUVD-2025-21382)
10 months ago
A vulnerability was found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd and classified as critical. Affected by this issue is the function fileUpload of the file /fileUpload. The manipulation of the argument File leads to unrestricted upload.
This vulnerability is handled as CVE-2025-7627. The attack may be launched remotely. Furthermore, there is an exploit available.
This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.
vuldb.com
CVE-2025-7626 | YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd /onlinePreview url path traversal (Issue 13 / EUVD-2025-21363)
10 months ago
A vulnerability has been found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd and classified as critical. Affected by this vulnerability is the function onlinePreview of the file /onlinePreview. The manipulation of the argument url leads to path traversal.
This vulnerability is known as CVE-2025-7626. The attack can be launched remotely. Furthermore, there is an exploit available.
This product does not use versioning. This is why information about affected and unaffected releases are unavailable.
vuldb.com
CVE-2025-7625 | YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd /download url path traversal (Issue 12 / EUVD-2025-21360)
10 months ago
A vulnerability, which was classified as critical, was found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. Affected is the function Download of the file /download. The manipulation of the argument url leads to path traversal.
This vulnerability is traded as CVE-2025-7625. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.
vuldb.com
「 OSR故障注入实战训练营 」第三期 开始报名啦!
10 months ago
国内首个针对实际设备进行故障注入的硬件安全实战培训 !!!
Submit #609098: YiJiuSmile kkFileViewOfficeEdit 2025/07/01 Deletion of Data Structure Sentinel [Accepted]
10 months ago
Submit #609098 / VDB-316329
bi8bu
Submit #609095: YiJiuSmile kkFileViewOfficeEdit 2025/07/01 Unrestricted Upload [Accepted]
10 months ago
Submit #609095 / VDB-316328
bi8bu
Submit #609078: kkFileViewOfficeEdit YiJiuSmile 2025/07/01 Server-Side Request Forgery [Accepted]
10 months ago
Submit #609078 / VDB-316327
bi8bu
Submit #609076: YiJiuSmile kkFileViewOfficeEdit 2025/07/01 Out-of-Bounds Read [Accepted]
10 months ago
Submit #609076 / VDB-316326
bi8bu
发行版 GParted Live 1.7.0 停止支持 32 位架构
10 months ago
旨在帮助用户管理磁盘分区的发行版 GParted Live 释出了 v1.7.0。新版本的一大变化是停止支持 32 位架构,原因是 GParted Live 是基于 Debian Sid,而 Debian 已从 Sid 软件包库中移除了 i386 kernel 包,因此它只提供 64 位 amd64 版本。GParted Live 1.7.0 的其他变化包括:GParted 1.7.0,基于 Debian Sid (截至 2025/Jul/12),Linux 内核版本更新到 6.12.37-1,实现了避免启动时块设备随机排序的机制——此举旨在防止用户在多个驱动器的系统中选择错误的磁盘。
11 Best Cloud Access Security Broker Software (CASB) – 2025
10 months ago
As organizations accelerate digital transformation, the need for robust cloud security has never been greater. Cloud Access Security Broker (CASB) software stands at the forefront, acting as the critical gatekeeper between users and cloud service providers. With the explosion of SaaS, IaaS, and PaaS platforms, businesses face evolving threats, compliance challenges, and the risk of […]
The post 11 Best Cloud Access Security Broker Software (CASB) – 2025 appeared first on Cyber Security News.
Cyber Writes Team
Submit #610407: fusionpbx.com fusionpbx 20250707 Reflective XSS [Duplicate]
10 months ago
Submit #610407 / VDB-203088
Starwung
JVN: Gigabyte製UEFIファームウェアモジュールにシステム管理モードのコールアウトの脆弱性
10 months ago
GigabyteのファームウェアのUEFIモジュールには、システム管理モード(SMM)コールアウトの脆弱性が存在します。
RALord
10 months ago
You must login to view this content
cohenido
RALord
10 months ago
You must login to view this content
cohenido
Stormous
10 months ago
You must login to view this content
cohenido
GPUHammer: самое мощное оружие против ИИ пряталось там, где его меньше всего ожидали
10 months ago
Даже мощнейшие видеокарты NVIDIA оказались беззащитны против новой атаки.
NightSpire
10 months ago
You must login to view this content
cohenido