Aggregator

Физики преодолели оптический предел, создав пиксели меньше длины волны света.

Инфраструктура Тайваня под прицелом китайского кибершпионажа.

A vulnerability has been found in FastCMS up to 0.1.5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /api/client/article/list. The manipulation of the argument orderBy leads to sql injection. This vulnerability is known as CVE-2025-2593. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in Qt up to 5.15.18/6.5.8/6.7.x. Affected is the function encodeText of the component QDom. The manipulation leads to inefficient algorithmic complexity. This vulnerability is traded as CVE-2025-30348. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Submit #517927 / VDB-300577

Submit #517926 / VDB-300577

A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp. The manipulation leads to heap-based buffer overflow. The identification of this vulnerability is CVE-2025-2592. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function MDLImporter::InternReadFile_Quake1 of the file code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument skinwidth/skinheight leads to divide by zero. This vulnerability was named CVE-2025-2591. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

Caido has unveiled version 0.47.0 of its web pentesting tool, cementing its position as a robust alternative to Burp Suite. This release is marked by several key enhancements that improve user experience and expand the tool’s capabilities in web application testing. The updates include a complete overhaul of the Match & Replace feature, the introduction […]

The post Caido v0.47.0 Released – A Web Pentesting Tool Alternative to Burp Suite appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #517885 / VDB-258678

Submit #517782 / VDB-300575

Submit #517781 / VDB-300574

История самой громкой хакерши возвращается в суд.

A vulnerability classified as problematic has been found in Varnish Cache up to 7.6.1. This affects an unknown part of the component HTTP1 Request Handler. The manipulation leads to http request smuggling. This vulnerability is uniquely identified as CVE-2025-30346. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Varnish Enterprise up to 6.0.13r12. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-30347. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.