Aggregator

动态速览 •自带安装程序，一种新型EDR绕过技术成勒索攻击跳板 •新型 “Chimera” 恶意软件来袭，可突 […]

这次，XGPT想让你告别安全运营的体力活儿

WXX后缀的WEAXOR勒索病毒最新变种分析

这次，XGPT想让你告别安全运营的体力活儿

WXX后缀的WEAXOR勒索病毒最新变种分析

——网络犯罪重点难点问题及典型案例研讨会会议综述

网络不是“法外之地”！

——网络犯罪重点难点问题及典型案例研讨会会议综述

网络不是“法外之地”！

大数据时代，数据成为推动经济社会创新发展的关键生产要素，催生出各类全新的产业形态和商业模式，全面激活了人类的创 […]

A vulnerability was found in Canteen Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /youthappam/php_action/editProductImage.php. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2022-43275. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability classified as critical has been found in Canteen Management System 1.0. Affected is an unknown function of the file /php_action/fetchSelectedfood.php. The manipulation of the argument productId leads to sql injection. This vulnerability is traded as CVE-2022-43276. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as critical was found in Hospital Management System 4.0. Affected by this vulnerability is an unknown functionality of the file file:hospital/hms/admin/view-patient.php. The manipulation leads to sql injection. This vulnerability is known as CVE-2021-35387. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in GitLab Community Edition and Enterprise Edition up to 15.2.4/15.3.3/15.4.0. This affects an unknown part of the component Access Token Handler. The manipulation leads to exposure of resource. This vulnerability is uniquely identified as CVE-2022-2882. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in GitLab Community Edition and Enterprise Edition up to 15.2.4/15.3.3/15.4.0 and classified as problematic. This vulnerability affects unknown code of the component DataDog Handler. The manipulation leads to information disclosure. This vulnerability was named CVE-2022-3018. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in SEMCMS 1.1 and classified as critical. This issue affects some unknown processing of the file Ant_Menu.php. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2021-38734. The attack may be initiated remotely. There is no exploit available.