Aggregator

CVE-2024-11839 | PlexTrac up to 2.8.0 Runbooks Module deserialization

VulDB Recent Entries
9 months ago
A vulnerability, which was classified as very critical, has been found in PlexTrac up to 2.8.0. Affected by this issue is some unknown functionality of the component Runbooks Module. The manipulation leads to deserialization. This vulnerability is handled as CVE-2024-11839. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-12581 | britner Gutenberg Blocks with AI Plugin up to 3.2.53 on WordPress Setting cross site scripting

VulDB Recent Entries
9 months ago
A vulnerability classified as problematic has been found in britner Gutenberg Blocks with AI Plugin up to 3.2.53 on WordPress. Affected is an unknown function of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-12581. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com

CVE-2024-21543 | djoser up to 2.2.x Two-factor Authentication authenticate improper authentication (ID 795)

VulDB Recent Entries
9 months ago
A vulnerability was found in djoser up to 2.2.x. It has been rated as critical. This issue affects the function authenticate of the component Two-factor Authentication Handler. The manipulation leads to improper authentication. The identification of this vulnerability is CVE-2024-21543. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-12289 | HashiCorp Boundary Community Edition/Boundary Enterprise up to 0.18.1 cleanup

VulDB Recent Entries
9 months ago
A vulnerability was found in HashiCorp Boundary Community Edition and Boundary Enterprise up to 0.18.1. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to improper cleanup on thrown exception. This vulnerability was named CVE-2024-12289. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

国投智能2024年度品牌问卷调查开启,限量办案宝典、定制礼品免费送

嘶吼
9 months ago

2024年度品牌问卷调查

2024年已接近尾声,这一年,美亚柏科正式更名为“国投智能”,实现华丽蜕变,业务版图持续扩张,行业影响力不断提升,开启了崭新的辉煌篇章。

国投智能的成长离不开广大用户的长期支持,为回馈大家的关注与厚爱,进一步了解您的真实感受,为您提供更加优质的产品与服务,岁末年终之际,特别推出2024年度品牌问卷调查活动,丰厚奖品等你来拿。

问卷时间

2024年12月3日-12月22日

参与方式

长按识别下方二维码即可填写问卷

活动奖品

奖品一

我们将从参与填写问卷的用户中,抽取部分送出《电子数据取证与网络犯罪调查》一本,限量的高品质【办案宝典】您值得拥有!

示例

奖品二

手柄紫砂杯一个,暖暖的,很贴心。

示例

奖品三

数字立方大厦积木一个,数字的奥秘与建筑的魅力等你来探索。

示例

感谢您一路同行,您的每一个宝贵建议都是我们不断前行的动力。我们将始终秉持“以客户为中心”的理念,为您提供更高效、更优质、更专业的服务。

*奖品一、奖品二与奖品三不可同时获得

*活动最终解释权归国投智能所有

企业资讯

FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K Seized

The Hackers News
9 months ago
The U.S. Department of Justice (DoJ) on Thursday announced the shutdown of an illicit marketplace called Rydox ("rydox[.]ru" and "rydox[.]cc") for selling stolen personal information, access devices, and other tools for conducting cybercrime and fraud. In tandem, three Kosovo nationals and administrators of the service, Ardit Kutleshi, Jetmir Kutleshi, and Shpend Sokoli, have been arrested.
The Hacker News

ZDI-CAN-25847: QNAP

ZDI: Upcoming Advisories
9 months ago
A CVSS score 7.1 AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'nella17 (@nella17tw), working with DEVCORE Internship Program, and DEVCORE Research Team' was reported to the affected vendor on: 2024-12-13, 80 days ago. The vendor is given until 2025-04-12 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Managed ad