Aggregator

Reddit 起诉 Anthropic 违反合同和不公平竞争

Solidot
3 months ago
Reddit 周三在旧金山起诉 AI 创业公司 Anthropic,指控其违反合同,未经授权使用其平台和数据,从事了非法和不公平竞争的商业行为。Reddit 称 Anthropic 利用其平台的用户数据训练模型,未经授权商业使用其内容伤害了它。Reddit 的商业模式除了广告就是将用户生成的内容授权给 AI 公司使用,它已经先后与 OpenAI 和 Google 达成了价值数亿美元的内容授权协议。

Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI

The Hackers News
3 months ago
Cisco has released security patches to address a critical security flaw impacting the Identity Services Engine (ISE) that, if successfully exploited, could allow unauthenticated actors to carry out malicious actions on susceptible systems. The security defect, tracked as CVE-2025-20286, carries a CVSS score of 9.9 out of 10.0. It has been described as a static credential vulnerability. "A
The Hacker News

CVE-2025-5716 | SourceCodester Open Source Clinic Management System 1.0 /login.php email sql injection

VulDB Recent Entries
3 months ago
A vulnerability classified as critical has been found in SourceCodester Open Source Clinic Management System 1.0. Affected is an unknown function of the file /login.php. The manipulation of the argument email leads to sql injection. This vulnerability is traded as CVE-2025-5716. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com

The cloud security crisis no one’s talking about

Help Net Security
3 months ago

Security teams are overwhelmed by a flood of alerts, most of which lack the context needed to accurately assess and espond to threats, according to ARMO. Respondents report receiving an average of 4,080 security alerts per month – or 136 alerts per day – related to potential cloud-based attacks, with 61% handling between 1,001 and 5,000 alerts monthy. Yet despite this deluge, the average number of true security incidents per year is just 7, meaning … More →

The post The cloud security crisis no one’s talking about appeared first on Help Net Security.

Help Net Security

CVE-2002-0895 | Matu FTP Server 1.1.3.0 Command PASS memory corruption (EDB-21468 / XFDB-9138)

Vuldb Updates
3 months ago
A vulnerability was found in Matu FTP Server 1.1.3.0 and classified as critical. This issue affects some unknown processing of the component Command Handler. The manipulation of the argument PASS leads to memory corruption. The identification of this vulnerability is CVE-2002-0895. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.
vuldb.com

CVE-2025-5626 | Campcodes Online Teacher Record Management System 1.0 edit-subjects-detail.php editid sql injection (EUVD-2025-16948)

Vuldb Updates
3 months ago
A vulnerability classified as critical has been found in Campcodes Online Teacher Record Management System 1.0. Affected is an unknown function of the file /admin/edit-subjects-detail.php. The manipulation of the argument editid leads to sql injection. This vulnerability is traded as CVE-2025-5626. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-5627 | code-projects Patient Record Management System 1.0 /sputum_form.php itr_no sql injection (EUVD-2025-16947)

Vuldb Updates
3 months ago
A vulnerability classified as critical was found in code-projects Patient Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /sputum_form.php. The manipulation of the argument itr_no leads to sql injection. This vulnerability is known as CVE-2025-5627. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-30097 | Microsoft Windows up to Server 2022 23H2 Speech Application Programming Interface double free (EUVD-2024-28034)

Vuldb Updates
3 months ago
A vulnerability, which was classified as critical, was found in Microsoft Windows. This affects an unknown part of the component Speech Application Programming Interface. The manipulation leads to double free. This vulnerability is uniquely identified as CVE-2024-30097. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2025-5625 | Campcodes Online Teacher Record Management System 1.0 /search-teacher.php searchteacher sql injection (EUVD-2025-16949)

Vuldb Updates
3 months ago
A vulnerability was found in Campcodes Online Teacher Record Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /search-teacher.php. The manipulation of the argument searchteacher leads to sql injection. The identification of this vulnerability is CVE-2025-5625. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

Managed ad