Aggregator

Cybersecurity researchers have disclosed details of a now-patched vulnerability in the popular figma-developer-mcp Model Context Protocol (MCP) server that could allow attackers to achieve code execution. The vulnerability, tracked as CVE-2025-53967 (CVSS score: 7.5), is a command injection bug stemming from the unsanitized use of user input, opening the door to a scenario where an attacker can

Enterprise AI assistants face a hidden menace when invisible control characters are used to smuggle malicious instructions into prompts. In September 2025, FireTail researcher Viktor Markopoulos tested several large language models (LLMs) for susceptibility to the long-standing ASCII Smuggling technique. His findings reveal that some widely adopted services still fail to strip out hidden Unicode tags, […]

The post ASCII Smuggling Attack in Gemini Tricks AI Agents into Revealing Smuggled Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #668006 / VDB-327610

Submit #668005 / VDB-327609

A vulnerability was found in Google Chrome. It has been rated as critical. Impacted is an unknown function of the component Storage. This manipulation causes use after free. This vulnerability is tracked as CVE-2025-11460. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in Google Chrome. It has been declared as critical. This issue affects some unknown processing of the component Sync. The manipulation results in heap-based buffer overflow. This vulnerability is identified as CVE-2025-11458. The attack can be executed remotely. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. It has been classified as problematic. This vulnerability affects the function isPathAllowed of the file src/tools/filesystem.ts. The manipulation leads to symlink following. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is referenced as CVE-2025-11489. The attack can only be performed from a local environment. Furthermore, an exploit is available. The vendor explains: "Our restriction features are designed as guardrails for LLMs to help them stay closer to what users want, rather than hardened security boundaries. (...) For users where security is a top priority, we continue to recommend using Desktop Commander with Docker, which provides actual isolation. (...) We'll keep this issue open for future consideration if we receive more user demand for improved restrictions."

От невинного клика до перехвата всех ваших действий проходит меньше минуты.

Three newly disclosed vulnerabilities have been identified in the Lua scripting engine of Redis 7.4.5, each presenting severe risks of remote code execution and privilege escalation.  Redrays has released a detailed proof-of-concept (PoC) to exploit these vulnerabilities, which is now publicly available. Organizations are urged to act immediately. Use-After-Free Flaw (CVE-2025-49844) This vulnerability arises when […]

The post PoC Exploit Released for Critical Lua Engine Vulnerabilities appeared first on Cyber Security News.

Submit #668004 / VDB-327606

A vulnerability was found in D-Link DIR-852 up to 20251002 and classified as critical. This affects an unknown part of the file /HNAP1/. Executing manipulation can lead to command injection. This vulnerability only affects products that are no longer supported by the maintainer. The identification of this vulnerability is CVE-2025-11488. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in SourceCodester Farm Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /uploadProduct.php. Performing manipulation of the argument Type results in sql injection. This vulnerability was named CVE-2025-11487. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability, which was classified as critical, was found in SourceCodester Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /buyNow.php. Such manipulation of the argument Name leads to sql injection. This vulnerability is uniquely identified as CVE-2025-11486. The attack can be launched remotely. Moreover, an exploit is present.

Shuyal Stealer is a recently uncovered infostealer that pushes the boundaries of traditional browser-targeted malware. Unlike most variants that zero in on popular platforms like Chrome and Edge, Shuyal dramatically widens its scope by targeting 19 different browsers, making it far more versatile and dangerous in its data-harvesting capabilities. Beyond the usual theft of browser-stored […]

The post Shuyal Stealer Malware Exploits 19 Browsers to Steal Logins appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #667505 / VDB-327605

Submit #667455 / VDB-327604

Submit #667414 / VDB-327603

A vulnerability, which was classified as problematic, has been found in SourceCodester Student Grades Management System 1.0. Affected is the function add_user of the file /admin.php of the component Manage Users Page. This manipulation of the argument first_name/last_name causes cross site scripting. This vulnerability is handled as CVE-2025-11485. The attack can be initiated remotely. Additionally, an exploit exists.

Submit #667406 / VDB-327602

Onmisbaar voor militair gebruik, maar ook zeer handig om medicijnen of organen tussen ziekenhuizen te vervoeren. Het betreft de mogelijkheden van drones. Die zijn ook in te zetten om dijken, bruggen en windmolens te controleren, hulp te bieden bij rampen en reddingsacties en pakketten te vervoeren naar afgelegen of lastig bereikbare gebieden. Staatssecretaris Gijs Tuinman zou al die mogelijkheden graag verwezenlijken en maakt zich daarom hard voor een permanent drone-testgebied boven de Noordzee.