Aggregator

A vulnerability was found in eteubert Podlove Podcast Publisher Plugin up to 4.2.2 on WordPress. It has been rated as problematic. Affected by this issue is the function ajax_transcript_delete. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2025-1383. The attack may be launched remotely. There is no exploit available.

Google 正督促特朗普政府的司法部不要拆分该公司，理由是国家安全。去年 11 月法官裁决 Alphabet/Google 涉嫌垄断，拜登政府的司法部要求 Google 出售浏览器 Chrome，停止向苹果等公司支付数十亿美元换取成为默认搜索引擎的交易，以及做出其它业务方面的改革。在特朗普政府下，此案仍将继续下去，法官将在下个月举行相关听证会。彭博的报道称，Google 的一名代表在上周举行的一个会议上督促政府采取不那么激进的立场。该公司给出的理由是目前的提议可能损害经济和国家安全。

CHARCHA проверит личность за экраном перед генерацией контента.

Бастрыкин представил предложения Путину на совещании.

A vulnerability was found in Apache Traffic Server up to 9.2.8/10.0.3 and classified as problematic. Affected by this issue is some unknown functionality of the component Header Field Handler. The manipulation of the argument Expect leads to Privilege Escalation. This vulnerability is handled as CVE-2024-56202. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

The U.S. Department of Justice (DoJ) charges 12 Chinese nationals for their alleged involvement in state-linked cyber operations. The U.S. DoJ charged 12 Chinese nationals, including PRC security officers, employees of the hacking firm i-Soon, and members of the APT27 group (aka Emissary Panda, TG-3390, Bronze Union, and Lucky Mouse), for data theft and suppressing dissent worldwide. “The Justice […]

Французский университет запускает программу, защищающую свободу исследований от администрации Трампа.

Слепо доверяя технологиям, полицейские рискуют превратить совпадения в причины ареста.

A vulnerability classified as critical has been found in Tungsten Automation Power PDF. Affected is an unknown function of the component PDF File Parser. The manipulation leads to heap-based buffer overflow. This vulnerability is traded as CVE-2024-9743. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Tungsten Automation Power PDF. Affected by this vulnerability is an unknown functionality of the component JP2 File Parser. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2024-9744. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Google Chrome. Affected by this vulnerability is an unknown functionality of the component Layout. The manipulation leads to heap-based buffer overflow. This vulnerability is known as CVE-2024-6994. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Tungsten Automation Power PDF. Affected by this issue is some unknown functionality of the component TIF File Parser. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2024-9745. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.