Aggregator

A vulnerability was found in 2daybiz Business Community Script. It has been rated as critical. This issue affects some unknown processing of the file admin/member_details.php. The manipulation of the argument mid leads to sql injection. The identification of this vulnerability is CVE-2009-1651. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Submitterscript 2 and classified as critical. Affected by this issue is some unknown functionality of the file admin/index.php. The manipulation of the argument uJelszo leads to sql injection. This vulnerability is handled as CVE-2009-1813. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Bicluc beLive 0.2.3. It has been classified as critical. This affects an unknown part of the file arch.php. The manipulation of the argument arch leads to path traversal. This vulnerability is uniquely identified as CVE-2009-1649. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Tenfourzero Shutter 0.1.1. It has been declared as critical. This vulnerability affects unknown code of the file photos.php. The manipulation leads to sql injection. This vulnerability was named CVE-2009-1650. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Strawberry 1.1.1 and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument that leads to path traversal. This vulnerability is handled as CVE-2009-1774. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as very critical has been found in Digimode10 Maya 1.0.2. Affected is an unknown function. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2009-1817. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

各位读者周末好，我们精选了本周知识大陆公开发布的10条优质资源，让我们一起看看吧。

A vulnerability, which was classified as critical, has been found in Microsoft Windows up to Vista. Affected by this issue is some unknown functionality of the component Common Controls. The manipulation leads to use after free. This vulnerability is handled as CVE-2015-1756. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Microsoft Windows Server 2008/Server 2012. This affects an unknown part of the component Active Directory Federation Services. The manipulation of the argument wct leads to cross site scripting. This vulnerability is uniquely identified as CVE-2015-1757. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Microsoft Windows up to Vista and classified as problematic. This vulnerability affects the function LoadLibrary. The manipulation leads to untrusted search path. This vulnerability was named CVE-2015-1758. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows up to Vista and classified as problematic. Affected by this issue is some unknown functionality of the component Mount Manager. The manipulation leads to link following. This vulnerability is handled as CVE-2015-1769. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in Libssh2 up to 1.4.2. Affected by this vulnerability is the function kex_agree_methods of the component Service. The manipulation leads to improper input validation. This vulnerability is known as CVE-2015-1782. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

闪捷信息发布新一代全链路、高性能、免改造数据加密产品：闪捷信息智能加密平台。

OpenText 发布了其“2024 年最恶劣恶意软件”名单，识别出关键的网络安全威胁，包括特别针对关键基础设施的勒索软件攻击。

你可能错过的新鲜事vivo S20 系列发布11 月 28 日，vivo 发布 S20 系列手机。vivo S20 Pro 采用天玑 9300+ 处理器，搭载 6.67 英寸全等深微四曲面京东方

In 2021, I wrote about how offensive actors can leverage AWS SSO device code for phis

A vulnerability was found in GE Fanuc iFIX up to 5.0 and classified as very critical. Affected by this issue is some unknown functionality of the component Access Restriction. The manipulation leads to credentials management. This vulnerability is handled as CVE-2009-0216. The attack may be launched remotely. There is no exploit available.