Aggregator

A vulnerability identified as critical has been detected in Media Control Panel. The affected element is an unknown function. Performing manipulation results in insufficiently protected credentials. This vulnerability is cataloged as CVE-2023-23466. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Media Control Panel. Affected is an unknown function. This manipulation causes cross site scripting. This vulnerability appears as CVE-2023-23467. The attack may be initiated remotely. There is no available exploit.

A vulnerability described as problematic has been identified in Media Control Panel. This impacts an unknown function. The manipulation results in cross-site request forgery. This vulnerability is reported as CVE-2023-23465. The attack can be launched remotely. No exploit exists.

最近OpenAI的发布会，信息量很大。

Cybersecurity researchers are calling attention to a nefarious campaign targeting WordPress sites to make malicious JavaScript injections that are designed to redirect users to sketchy sites. "Site visitors get injected content that was drive-by malware like fake Cloudflare verification," Sucuri researcher Puja Srivastava said in an analysis published last week. The website security company

While the firm did not specify which nation-state it believes the hacker is affiliated with, The New York Times reported that sources have said it is China.

IOC Alert: XWorm Payload Delivered via Microsoft DevTunnel

Российские компании успешно испытали передачу данных в S-диапазоне с малых спутников Геоскана.

A vulnerability described as critical has been identified in varunsardana004 Blood-Bank-And-Donation-Management-System up to dc9e0393d826fbc85fad9755b5bc12cba1919df2. The impacted element is an unknown function of the file /donate_blood.php. Executing manipulation of the argument fullname can lead to sql injection. This vulnerability appears as CVE-2025-11481. The attack may be performed from remote. In addition, an exploit is available. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed.

丹麦政府计划禁止 15 岁以下儿童使用社交媒体。丹麦首相 Mette Frederiksen 对议会表示，“手机和社交媒体正在偷走孩子的童年，我们释放了一个怪物，” 她指出几乎所有丹麦七年级学生（13 或 14 岁）都拥有手机。“我希望在座议员能帮助加强法律，以更好地照顾丹麦的儿童。”她并未透露社媒禁令的具体内容，政府下一议会年度的立法计划中也没有相关法案。

Met Police arrested two teenagers over the Kido nursery ransomware attack, which exposed data for 8,000 children. Full details on the hack and police investigation.