Aggregator

A vulnerability was found in Kashipara Online Service Management Portal 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /osms/Requester/. The manipulation leads to exposure of information through directory listing. This vulnerability was named CVE-2025-45320. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Kevin Renskers dmmjobcontrol 2.14.0. It has been rated as critical. This issue affects the function Search. The manipulation of the argument tx_dmmjobcontrol_pi1[search][sector][] leads to sql injection. The identification of this vulnerability is CVE-2014-7201. The attack may be initiated remotely. Furthermore, there is an exploit available.

在一次CTF线下比赛，遇到RASP防御，没有回显也不出网，聪明的你会有什么想法呢？

A vulnerability classified as problematic was found in Apple WebKit 4.531.9.1. Affected by this vulnerability is an unknown functionality in the library WebKit.dll of the file Safari.exe. The manipulation leads to improper resource management. This vulnerability is known as CVE-2010-1729. The attack can be launched remotely. There is no exploit available.

A vulnerability has been found in Apple iOS up to 2.0 and classified as critical. This vulnerability affects unknown code of the component User Interface. The manipulation leads to improper access controls. This vulnerability was named CVE-2010-1757. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Google Chrome up to 2.0.172.32. Affected by this issue is the function WebFrameLoaderClient::dispatchDidChangeLocationWithinPage of the file src/webkit/glue/webframeloaderclient_impl.cc. The manipulation leads to denial of service. This vulnerability is handled as CVE-2009-3934. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Apple WebKit. Affected by this vulnerability is an unknown functionality. The manipulation leads to information disclosure. This vulnerability is known as CVE-2010-1126. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in WebKit R50173. Affected by this vulnerability is the function WTF::currentTime of the file JavaScriptCore/wtf/CurrentTime.cpp. The manipulation leads to improper resource management. This vulnerability is known as CVE-2009-3933. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

HackerNews 编译，转载请注明出处： 美国联邦调查局（FBI）发布警告称，自2022年起活跃的“Silent勒索组织”，简称SRG，又名月蛾、话痨蜘蛛、UNC3753，持续利用IT主题社会工程学通话及回拨式钓鱼邮件攻击美国律师事务所，通过获取系统远程访问权限窃取敏感数据实施勒索。该组织曾参与“BazarCall”恶意活动，并为Ryuk和Conti勒索软件攻击提供初始渗透支持。 FBI在警报中指出：“尽管该组织历史上攻击过多个行业企业，但自2023年春季起持续锁定美国律所，主要瞄准法律行业数据的高度敏感性。”最新监测显示，截至2025年3月，攻击者开始冒充IT支持人员致电员工，诱骗其开放远程访问权限，随后使用WinSCP、Rclone等工具窃取数据，多数情况下无需管理员权限即可得手。这种新型战术虽近期才出现，但已导致多起成功入侵事件。 得手后，该组织通过匿名邮件威胁出售或公开数据，甚至直接致电受害企业员工施压谈判。虽然运营着数据泄露网站，但FBI发现其威胁公示数据的行为存在反复。该组织攻击活动痕迹极少，常借助合法远程工具规避杀毒软件检测。典型攻击迹象包括：未经授权下载Zoho Assist/AnyDesk等工具、异常的WinSCP/Rclone外联流量、匿名组织的勒索来电/邮件，以及催促收件人致电取消订阅的钓鱼邮件。 报告最后建议：“实施基础防护措施，包括保持警惕、使用强密码、多因素认证及安装杀毒软件。针对静默勒索集团应重点采取以下措施：开展反钓鱼培训、制定IT人员身份核验规范、定期备份数据、全员启用双因素认证。”       消息来源： securityaffairs； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

本文系统讲解MQTT协议的基础知识、安全机制，通过举出MQTT在车联网应用的案例、模拟搭建简单的MQTT渗透测试实验环境，揭示协议交互过程中可能存在的认证缺陷、信息泄露、命令执行等风险，并揭示安全工程师学习协议原理的重要性。

应急响应 逆向

HackerNews 编译，转载请注明出处： 美国司法部周四宣布捣毁与DanaBot（又名DanaTools）相关的网络基础设施，并对16名涉嫌参与开发部署该恶意软件的个人提起指控。根据司法部声明，这款由俄罗斯网络犯罪组织操控的恶意软件已感染全球超30万台计算机，造成至少5000万美元损失，目前仍有2名俄罗斯籍主犯在逃。 39岁的亚历山大·斯捷潘诺夫（化名JimmBee）与34岁的阿尔乔姆·卡林金（化名Onix）被列为关键嫌疑人。斯捷潘诺夫面临共谋、电信欺诈、银行欺诈等11项指控，最高可判5年监禁；卡林金被指控非法入侵计算机系统等罪名，最高面临72年刑期。起诉书显示，多名嫌疑人因操作失误导致自身设备感染恶意软件，意外暴露真实身份——部分案例系主动测试恶意软件功能，另一些则纯属意外触发。 作为“Endgame行动”的重要成果，执法部门查封了DanaBot的数十台美国境内C2服务器。司法部指出，该恶意软件通过钓鱼邮件传播，构建僵尸网络实施金融欺诈与勒索攻击。DanaBot采用分层代理架构，受害者流量需经2-3层服务器中转才能抵达最终控制端，日常维持5-6台二级服务器在线，主要受害者集中于巴西、墨西哥与美国。 技术分析显示，DanaBot自2018年5月作为银行木马问世后，逐步发展为模块化恶意软件即服务（MaaS）平台，月租费用500美元起。其功能涵盖数据窃取、银行会话劫持、键盘记录、远程控制等，支持通过加密器（如Matanbuchus）与加载器隐匿行踪。2021年1月出现的定制版本专门针对北美与欧洲的军事、外交及政府实体，具备全设备交互记录能力。 值得注意的是，DanaBot在2020年7月至2024年6月期间几乎未通过邮件传播，转而依赖SEO投毒与恶意广告扩大感染。该组织还曾于2022年3月对乌克兰国防部邮箱系统发动DDoS攻击，并运营两个专门从事情报搜集的子僵尸网络（编号24、25），疑似服务于俄罗斯政府利益。 Proofpoint威胁研究员塞莱娜·拉尔森强调：“此类执法行动不仅削弱恶意软件功能，更迫使犯罪者改变策略，动摇黑产生态信任基础。” 本次行动得到亚马逊、CrowdStrike、ESET等十余家企业的技术支持。 同步披露的另一起案件中，48岁莫斯科居民鲁斯塔姆·加利阿莫夫因运营QakBot僵尸网络被起诉。尽管该网络在2023年8月遭国际执法摧毁，但其团伙转向“垃圾邮件轰炸”等新手法，持续散布Black Basta与CACTUS勒索软件。美方已对查获的2400万美元加密货币启动民事没收程序。       消息来源： thehackernews； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

シンクグラフィカが提供するメールフォームプロCGIのクーポン機能には、エラーメッセージによる情報漏えいの脆弱性が存在します。

前言这篇文章是针对Go-Zero框架的代码审计。这个框架对于我来说也是一个“新”的框架，因为之前也没审过。那么我遇到一个新的框架的时候，我会用一个通用的方法去学习如何审计这个框架。即学习这个框架的项目结构，你需要了解这个框架的结构特性，以便你更好的找到你想要审计的接口。所以这篇文章会介绍Go-Zero框架的项目结构、以及为什么是这样的结构，以便你了解为什么要这样审计这个框架。Go-Zero介绍在了

A vulnerability, which was classified as problematic, has been found in searchiq Search Solution Plugin up to 4.7 on WordPress. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-13350. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in averta Master Slider Plugin up to 3.10.6 on WordPress. It has been rated as problematic. This issue affects the function ms_slider of the component Shortcode Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-11731. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic was found in averta Master Slider Plugin up to 3.10.6 on WordPress. Affected by this vulnerability is the function ms_layer of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-13757. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in ZoomIt ZoomSounds Plugin up to 6.91 on WordPress. This vulnerability affects unknown code. The manipulation of the argument margs leads to deserialization. This vulnerability was named CVE-2024-13777. The attack can be initiated remotely. There is no exploit available.

A vulnerability has been found in softaculous Page Builder Plugin up to 1.9.8 on WordPress and classified as problematic. This vulnerability affects the function pagelayer_save_post. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2025-1926. The attack can be initiated remotely. There is no exploit available.

A vulnerability classified as problematic was found in themeum Qubely Plugin up to 1.8.13 on WordPress. This vulnerability affects the function qubely_get_content. The manipulation leads to exposure of private personal information to an unauthorized actor. This vulnerability was named CVE-2024-13228. The attack can be initiated remotely. There is no exploit available.