Aggregator

南京众智维信息科技有限公司完成数千万B1轮融资。

有用户报告 PyPI 上有新的木马版本，因此攻击似乎会持续到新的软件包版本 8.345 和 8.3.46。

What is Category Theory?

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'kimiya' was reported to the affected vendor on: 2024-12-12, 78 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 6.3 AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L severity vulnerability discovered by 'nella17 (@nella17tw), working with DEVCORE Internship Program, and DEVCORE Research Team' was reported to the affected vendor on: 2024-12-12, 78 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-12-12, 78 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Vladislav Berghici of Trend Micro Research & Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-12-12, 7 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-12-12, 78 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Vladislav Berghici of Trend Micro Research & Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-12-12, 7 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-12-12, 78 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-12-12, 7 days ago. The vendor is given until 2025-04-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Getting Better: Evolving Practices in API Security

Safe Handling of Data: Why Secrets Sprawl is a Risk

Building Confidence with Strategic Secrets Management

Is Hackerone good?

A vulnerability, which was classified as critical, was found in Composr CMS up to 10.0.39. Affected is an unknown function of the file /adminzone/index.php?page=admin-commandr. The manipulation leads to unrestricted upload. This vulnerability is traded as CVE-2021-46360. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Paxton Net2 Information Disclosure / Incorrect Access Control

How Cryptocurrency Turns to Cash in Russian Banks

The Apache Software Foundationが提供するApache Struts 2には、ファイルアップロード処理に不備が存在します。