Aggregator

A vulnerability, which was classified as problematic, has been found in Itechscripts Proman Xpress 5.0.1. This issue affects some unknown processing of the file client_details.php. The manipulation of the argument cl_comments leads to cross site scripting. The identification of this vulnerability is CVE-2012-4266. The attack may be initiated remotely. Furthermore, there is an exploit available.

黑客窃取皇家邮政144GB数据，供应商Spectos再陷安全丑闻。

North Korean IT workers are expanding their efforts beyond the US, and are seeking to fraudulently gain employment with organizations around the world, but most especially in Europe. According to Google’s threat researchers, they are also increasingly attempting to extort money from these companies once they get discovered and/or fired. “Previously, workers terminated from their places of employment might attempt to provide references for their other personas so that they could be rehired by the … More →

The post North Korean IT workers set their sights on European organizations appeared first on Help Net Security.

A vulnerability, which was classified as problematic, was found in NVIDIA Graphics Driver up to 341/369.58/375.62 on Quadro/NVS/GeForce. Affected is the function DxgDdiEscape in the library nvlddmkm.sys of the component Kernel Mode Layer. The manipulation leads to information disclosure (Kernel Memory). This vulnerability is traded as CVE-2016-7386. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

关键词腾讯会议根据最新消息，4月2日下午，“腾讯会议崩了”话题登上了热搜，不少网友反映无法通过腾讯会议进入会议

关键词腾讯会议根据最新消息，4月2日下午，“腾讯会议崩了”话题登上了热搜，不少网友反映无法通过腾讯会议进入会议

关键词腾讯会议根据最新消息，4月2日下午，“腾讯会议崩了”话题登上了热搜，不少网友反映无法通过腾讯会议进入会议

关键词腾讯会议根据最新消息，4月2日下午，“腾讯会议崩了”话题登上了热搜，不少网友反映无法通过腾讯会议进入会议

A vulnerability was found in SourceCodester Blog Site 1.0 and classified as problematic. This issue affects the function user_add of the file main.php. The manipulation of the argument name/email leads to cross site scripting. The identification of this vulnerability is CVE-2023-23019. The attack may be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Supreme Modules Lite Plugin up to 2.5.3 on WordPress. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-4334. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in SourceCodester Product Show Room 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Add Users. The manipulation of the argument Last Name leads to cross site scripting. This vulnerability is known as CVE-2024-33304. The attack can be launched remotely. There is no exploit available.

A vulnerability has been found in SourceCodester POS Point Sale System 1.0 and classified as problematic. This vulnerability affects unknown code of the file Main.php. The manipulation of the argument code/name/description leads to cross site scripting. This vulnerability was named CVE-2023-23021. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in CMSimple 5.15. This issue affects some unknown processing of the component Settings Menu. The manipulation of the argument Downloads leads to cross site scripting. The identification of this vulnerability is CVE-2024-33424. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in ViewerJS 0.5.8. It has been rated as problematic. This issue affects some unknown processing of the component URL TAG Handler. The manipulation leads to open redirect. The identification of this vulnerability is CVE-2024-25676. The attack may be initiated remotely. There is no exploit available.

ShareFiltrator is a Python tool designed for enumerating and bulk downloading sensitive files from SharePoint and OneDrive using authenticated cookies. It leverages SharePoint’s search API to identify files with credentials, highlighting misconfigurations from lax sharing permissions. The tool aids in extracting secrets while also discussing mitigation strategies.

我们在日常狩猎中捕获到APT-C-47组织疑似针对知识产权行业的攻击样本，攻击者还是一如既往地使用ClickOnce技术投递下一阶段载荷，使用C#模块，以及C++模块经过层层递进，并最终内存加载Golang编译的远控木马

我们在日常狩猎中捕获到APT-C-47组织疑似针对知识产权行业的攻击样本，攻击者还是一如既往地使用ClickOnce技术投递下一阶段载荷，使用C#模块，以及C++模块经过层层递进，并最终内存加载Golang编译的远控木马

我们在日常狩猎中捕获到APT-C-47组织疑似针对知识产权行业的攻击样本，攻击者还是一如既往地使用ClickOnce技术投递下一阶段载荷，使用C#模块，以及C++模块经过层层递进，并最终内存加载Golang编译的远控木马

3月29日，2025年首站补天白帽黑客城市沙龙-西安站圆满收官。