Aggregator

CVE-2025-63687 | rymcu forest up to f782e85 AuthorshipAspect.java doBefore improper authorization

VulDB Recent Entries
3 months ago
A vulnerability described as critical has been identified in rymcu forest up to f782e85. Affected by this vulnerability is the function doBefore of the file src/main/java/com/rymcu/forest/core/service/security/AuthorshipAspect.java. The manipulation results in improper authorization. This vulnerability was named CVE-2025-63687. The attack needs to be approached within the local network. There is no available exploit. It is best practice to apply a patch to resolve this issue.
vuldb.com

CVE-2025-53413 | QNAP File Station prior 5.5.6.5018 User Account allocation of resources (qsa-25-38)

VulDB Recent Entries
3 months ago
A vulnerability labeled as problematic has been found in QNAP File Station 5.5.6.4741/5.5.6.4791/5.5.6.4847/5.5.6.4907/5.5.6.4933. This impacts an unknown function of the component User Account Handler. Executing manipulation can lead to allocation of resources. This vulnerability is handled as CVE-2025-53413. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2025-53411 | QNAP File Station prior 5.5.6.5018 allocation of resources (qsa-25-38)

VulDB Recent Entries
3 months ago
A vulnerability identified as problematic has been detected in QNAP File Station 5.5.6.4741/5.5.6.4791/5.5.6.4847/5.5.6.4907/5.5.6.4933. This affects an unknown function. Performing manipulation results in allocation of resources. This vulnerability is known as CVE-2025-53411. Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.
vuldb.com

CVE-2025-53410 | QNAP File Station prior 5.5.6.5018 User Account allocation of resources (qsa-25-38)

VulDB Recent Entries
3 months ago
A vulnerability categorized as problematic has been discovered in QNAP File Station 5.5.6.4741/5.5.6.4791/5.5.6.4847/5.5.6.4907/5.5.6.4933. The impacted element is an unknown function of the component User Account Handler. Such manipulation leads to allocation of resources. This vulnerability is traded as CVE-2025-53410. The attack may be launched remotely. There is no exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-53409 | QNAP File Station prior 5.5.6.5018 allocation of resources (qsa-25-38)

VulDB Recent Entries
3 months ago
A vulnerability was found in QNAP File Station 5.5.6.4741/5.5.6.4791/5.5.6.4847/5.5.6.4907/5.5.6.4933. It has been rated as critical. The affected element is an unknown function. This manipulation causes allocation of resources. This vulnerability appears as CVE-2025-53409. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is advised.
vuldb.com

CVE-2025-30406 | Gladinet CentreStack up to 16.1.10296.56315 Portal portal\web.config hard-coded key (Nessus ID 274363)

Vuldb Updates
3 months ago
A vulnerability classified as problematic was found in Gladinet CentreStack up to 16.1.10296.56315. Affected by this issue is some unknown functionality of the file portal\web.config of the component Portal. The manipulation results in use of hard-coded cryptographic key . This vulnerability is reported as CVE-2025-30406. The attack can be launched remotely. Moreover, an exploit is present. Upgrading the affected component is advised.
vuldb.com

Cisco Unified CCX Remote Code Execution Vulnerabilities (CVE-2025-20354, CVE-2025-20358)

Security Boulevard
3 months ago

Technical details The problem comes from weak authentication in two different CCX components. CVE-2025-20354 targets the Java RMI service. CCX exposes this service to accept remote data, but it does not properly check who is sending it. That means an attacker can upload a specially crafted file and run commands on the underlying operating system.…

The post Cisco Unified CCX Remote Code Execution Vulnerabilities (CVE-2025-20354, CVE-2025-20358) appeared first on Sentrium Security.

The post Cisco Unified CCX Remote Code Execution Vulnerabilities (CVE-2025-20354, CVE-2025-20358) appeared first on Security Boulevard.

Tom Keech

Stop Paying the Password Tax: A CFO’s Guide to Affordable Zero-Trust Access

Security Boulevard
3 months ago

In 2025, stolen credentials remain the most common and fastest path into an organization’s systems. Nearly half of breaches begin with compromised logins. The 2025 Verizon Data Breach Investigations Report puts it bluntly: “Hackers don’t break in anymore, they log in.” Web application attacks have followed suit, with 88% now using stolen credentials as the..

The post Stop Paying the Password Tax: A CFO’s Guide to Affordable Zero-Trust Access appeared first on Security Boulevard.

Eugene Shablygin

From Log4j to IIS, China’s Hackers Turn Legacy Bugs into Global Espionage Tools

The Hackers News
3 months ago
A China-linked threat actor has been attributed to a cyber attack targeting an U.S. non-profit organization with an aim to establish long-term persistence, as part of broader activity aimed at U.S. entities that are linked to or involved in policy issues. The organization, according to a report from Broadcom's Symantec and Carbon Black teams, is "active in attempting to influence U.S. government
The Hacker News

NDSS 2025 – YuraScanner: Leveraging LLMs For Task-driven Web App Scanning4+

Security Boulevard
3 months ago

SESSION
Session 2B: Web Security

Authors, Creators & Presenters: Aleksei Stafeev (CISPA Helmholtz Center for Information Security), Tim Recktenwald (CISPA Helmholtz Center for Information Security), Gianluca De Stefano (CISPA Helmholtz Center for Information Security), Soheil Khodayari (CISPA Helmholtz Center for Information Security), Glancarlo Pellegrino (CISPA Helmholtz Center for Information Security)

PAPER
YuraScanner: Leveraging LLMs for Task-driven Web App Scanning
Web application scanners are popular and effective black-box testing tools, automating the detection of vulnerabilities by exploring and interacting with user interfaces. Despite their effectiveness, these scanners struggle with discovering deeper states in modern web applications due to their limited understanding of workflows. This study addresses this limitation by introducing YuraScanner, a task-driven web application scanner that leverages large-language models (LLMs) to autonomously execute tasks and workflows.
YuraScanner operates as a goal-based agent, suggesting actions to achieve predefined objectives by processing webpages to extract semantic information. Unlike traditional methods that rely on user-provided traces, YuraScanner uses LLMs to bridge the semantic gap, making it web application-agnostic. Using the XSS engine of Black Widow, YuraScanner tests discovered input points for vulnerabilities, enhancing the scanning process's comprehensiveness and accuracy.
We evaluated YuraScanner on 20 diverse web applications, focusing on task extraction, execution accuracy, and vulnerability detection. The results
demonstrate YuraScanner's superiority in discovering new attack surfaces and deeper states, significantly improving vulnerability detection. Notably,
YuraScanner identified 12 unique zero-day XSS vulnerabilities, compared to three by Black Widow. This study highlights YuraScanner's potential to
revolutionize web application scanning with its automated, task-driven approach.

Our thanks to the Network and Distributed System Security (NDSS) Symposium for publishing their Creators, Authors and Presenter’s superb NDSS Symposium 2025 Conference content on the organization’s’ YouTube channel.

Permalink

The post NDSS 2025 – YuraScanner: Leveraging LLMs For Task-driven Web App Scanning4+ appeared first on Security Boulevard.

Marc Handelman

Managed ad