Aggregator

近日，一起大规模的数据泄露事件震动了网络安全界。名为“HikkI-Chan”的黑客在臭名昭著的Breach Forums上泄露了超过3.9亿VK用户的个人信息。

A vulnerability was found in Get Get Post Content Shortcode Plugin up to 0.4 on WordPress. It has been declared as problematic. This vulnerability affects the function post_content. The manipulation leads to information disclosure. This vulnerability was named CVE-2024-12447. The attack can be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Crafthemes Demo Import Plugin up to 3.3 on WordPress. Affected is the function process_uploaded_files. The manipulation leads to unrestricted upload. This vulnerability is traded as CVE-2024-9698. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Cisco Unified CallManager up to 5.x. It has been classified as critical. This affects an unknown part of the component User Interface. The manipulation of the argument key leads to sql injection. This vulnerability is uniquely identified as CVE-2008-0026. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Что вы знаете о своих любимых играх?

Germany's Federal Office of Information Security (BSI) has announced that it has disrupted a malware operation called BADBOX that came preloaded on at least 30,000 internet-connected devices sold across the country. In a statement published earlier this week, authorities said they severed the communications between the devices and their command-and-control (C2) servers by sinkholing the domains