谷歌完整验证Play Integrity Check全面分析
看雪论坛作者ID:恋空
Aggregator
5 SOC Challenges and How Threat Intelligence Solves Them
1 day 11 hours ago
No SOC is perfect, but it’s possible to overcome frequent shortcomings and achieve measurable results by introducing one essential component of modern cybersecurity operations: threat intelligence. Organizations using ANY.RUN’s TI solutions report the following results: Quality, real-time threat intelligence helps SOCs tackle their toughest challenges. More on that below. #1. Low Detection Rates As attackers […]
The post 5 SOC Challenges and How Threat Intelligence Solves Them appeared first on ANY.RUN's Cybersecurity Blog.
ANY.RUN
GLP-1 减肥药降低了美国的肥胖率
1 day 11 hours ago
根据盖洛普的最新调查,GLP-1 减肥药的流行降低了美国的肥胖率。美国成年人的肥胖率从三年前的 39.9% 下降至今年的 37%。过去一年半服用 GLP-1 agonists 减肥药如司美格鲁肽或替尔泊肽的美国人数量增加了一倍多。12.4% 的受访者服用此类减肥药,而 2024 年 2 月的调查中这一比例为 5.8%。GLP-1 减肥药是在 2021 年批准在美国上市。50-64 岁人群中服用减肥药的比例最高,肥胖率下降 5.0% 至 42.8%。调查还发现,服用减肥药的女性更多,体重减轻幅度也高于男性。但随着美国医保公司停止承保 GLP-1 减肥药,患者每个月将需要自己花费 500 美元购买减肥药,很多人可能无法负担。
护航AI安全新防线!默安科技斩获“AI领航杯”AI+安全赛道双奖
1 day 11 hours ago
2025Q3企业邮箱安全报告:境外威胁新格局!这几点风险速查
1 day 11 hours ago
报告概述:
本报告基于CACTER邮件安全人工智能实验室在2025年第三季度(7-9月)监测的全量邮件数据,对期间出现的垃圾邮件、钓鱼攻击、暴力破解及域内威胁等安全态势进行梳理分析。报告重点解析了攻击源头变迁、行业风险分布,旨在为各行业用户提供及时有效的防护参考。
报告内容核心摘要:
1. 企业邮箱正常邮件量占比 54.64%,异常邮件合计占比 45.36%,两者接近,安全形势依然严峻。
2. 垃圾邮件总量8.72亿封,环比下降10.31%,越南首次进入TOP10即跃居榜首。
3. 钓鱼邮件总量为 1.71亿封,同比下降20.45%。国内发信源高度集中,香港断层领先,境外攻击源呈现“西退南进”特征。
4. 域内钓鱼邮件量锐减81%,防护成效显著,但内部高仿邮件仍具高欺骗性,需持续警惕。
5. 暴力破解攻击总量下降超20%,但成功率保持稳定(约0.14%),策略转向精准化。
6. 建议企业部署“智能检测+安全通道+账号防护”的协同防护方案。
CACTER解决方案建议:
1. 部署大模型邮件安全网关,精准拦截AI钓鱼邮件
针对本季度境外钓鱼邮件占比70.69%、越南为首要攻击源的情况,大模型网关融合大模型技术,提升 AI 钓鱼邮件及跨境威胁的检测与拦截精准度。
2. 采用安全海外中继,保障跨境邮件安全投递
面对境外垃圾邮件占比64.63%、跨境链路风险加剧,其依托全球中继节点智能选路,保障邮件安全投递,防范数据窃取和篡改。
3. 应用CAC2.0反钓鱼防盗号,强化账号防护与威胁感知
基于教育等行业高危账号占比超86%的现状,其拦截泄露账号登录、监测异常行为,依托威胁情报,支撑账号安全与防护决策。
CACTER邮件安全
Actively Exploited WSUS Bug Added to CISA KEV List
1 day 11 hours ago
Sysadmins are urged to patch WSUS vulnerability CVE-2025-59287 as soon as possible, with federal agencies required to update by November 14
pyd_Hook
1 day 11 hours ago
做pyd的题做吐了,想骂人动态看,一坨静态看,更是依托所以,我要写一个通用的hook脚本,hhhhhhh
CVE-2025-12332 | SourceCodester Student Grades Management System 1.0 /admin.php delete_user cross site scripting
1 day 11 hours ago
A vulnerability described as problematic has been identified in SourceCodester Student Grades Management System 1.0. This affects the function delete_user of the file /admin.php. Executing manipulation can lead to cross site scripting.
This vulnerability appears as CVE-2025-12332. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com
CVE-2025-12333 | code-projects E-Commerce Website 1.0 /pages/supplier_add.php supp_name/supp_address cross site scripting
1 day 11 hours ago
A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/supplier_add.php. The manipulation of the argument supp_name/supp_address leads to cross site scripting.
This vulnerability is traded as CVE-2025-12333. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-12334 | code-projects E-Commerce Website 1.0 /pages/product_add.php prod_name/prod_desc/prod_cost cross site scripting
1 day 11 hours ago
A vulnerability classified as problematic was found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/product_add.php. The manipulation of the argument prod_name/prod_desc/prod_cost results in cross site scripting.
This vulnerability is known as CVE-2025-12334. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com
CVE-2025-12335 | code-projects E-Commerce Website 1.0 supplier_update.php supp_name/supp_address cross site scripting
1 day 11 hours ago
A vulnerability, which was classified as problematic, has been found in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplier_update.php. This manipulation of the argument supp_name/supp_address causes cross site scripting.
This vulnerability is handled as CVE-2025-12335. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com
CVE-2025-12336 | Campcodes Retro Basketball Shoes Online Store 1.0 /admin/admin_index.php Username sql injection (EUVD-2025-36394)
1 day 11 hours ago
A vulnerability, which was classified as critical, was found in Campcodes Retro Basketball Shoes Online Store 1.0. Affected by this issue is some unknown functionality of the file /admin/admin_index.php. Such manipulation of the argument Username leads to sql injection.
This vulnerability is uniquely identified as CVE-2025-12336. The attack can be launched remotely. Moreover, an exploit is present.
vuldb.com
CVE-2025-12337 | Campcodes Retro Basketball Shoes Online Store 1.0 /admin/admin_feature.php pid sql injection (EUVD-2025-36393)
1 day 11 hours ago
A vulnerability has been found in Campcodes Retro Basketball Shoes Online Store 1.0 and classified as critical. This affects an unknown part of the file /admin/admin_feature.php. Performing manipulation of the argument pid results in sql injection.
This vulnerability was named CVE-2025-12337. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com
CVE-2025-62778 | Frappe LMS up to 2.39.1 Quiz Form direct request (GHSA-8xvv-6v89-xxgx)
1 day 11 hours ago
A vulnerability was found in Frappe LMS up to 2.39.1. It has been classified as problematic. Impacted is an unknown function of the component Quiz Form. This manipulation causes direct request.
This vulnerability is handled as CVE-2025-62778. The attack can be initiated remotely. There is not any exploit available.
Applying a patch is the recommended action to fix this issue.
vuldb.com
CVE-2025-62779 | Frappe LMS up to 2.39.1 cross site scripting (GHSA-j6h8-qg65-3fpx)
1 day 11 hours ago
A vulnerability classified as problematic was found in Frappe LMS up to 2.39.1. The affected element is an unknown function. The manipulation results in cross site scripting.
This vulnerability is cataloged as CVE-2025-62779. The attack may be launched remotely. There is no exploit available.
It is advisable to implement a patch to correct this issue.
vuldb.com
CVE-2025-12346 | MaxSite CMS up to 109 HTTP Header uploads-require-maxsite.php X-Requested-FileName/X-Requested-FileUpDir unrestricted upload (EUVD-2025-36425)
1 day 11 hours ago
A vulnerability, which was classified as critical, has been found in MaxSite CMS up to 109. This vulnerability affects unknown code of the file application/maxsite/admin/plugins/auto_post/uploads-require-maxsite.php of the component HTTP Header Handler. Performing manipulation of the argument X-Requested-FileName/X-Requested-FileUpDir results in unrestricted upload.
This vulnerability is known as CVE-2025-12346. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com
CVE-2025-12347 | MaxSite CMS up to 109 save-file-ajax.php file_path/content unrestricted upload (EUVD-2025-36424)
1 day 11 hours ago
A vulnerability, which was classified as critical, was found in MaxSite CMS up to 109. This issue affects some unknown processing of the file application/maxsite/admin/plugins/editor_files/save-file-ajax.php. Executing manipulation of the argument file_path/content can lead to unrestricted upload.
This vulnerability is handled as CVE-2025-12347. The attack can be executed remotely. Additionally, an exploit exists.
The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com
CVE-2025-12342 | Serdar Bayram Ghost Hot Spot up to 20251014 Login /Auth.php sql injection (EUVD-2025-36389)
1 day 11 hours ago
A vulnerability was found in Serdar Bayram Ghost Hot Spot up to 20251014. It has been rated as critical. The affected element is an unknown function of the file /Auth.php of the component Login. This manipulation causes sql injection.
This vulnerability is tracked as CVE-2025-12342. The attack is possible to be carried out remotely. Moreover, an exploit is present.
The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com
CVE-2025-12344 | Yonyou U8 Cloud up to 5.1sp Request Header NCloudGatewayServlet ts/sign unrestricted upload (EUVD-2025-36388)
1 day 11 hours ago
A vulnerability categorized as critical has been discovered in Yonyou U8 Cloud up to 5.1sp. The impacted element is an unknown function of the file /service/NCloudGatewayServlet of the component Request Header Handler. Such manipulation of the argument ts/sign leads to unrestricted upload.
This vulnerability is listed as CVE-2025-12344. The attack may be performed from remote. In addition, an exploit is available.
The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com
CVE-2025-12338 | Campcodes Retro Basketball Shoes Online Store 1.0 /admin/admin_product.ph pid sql injection (EUVD-2025-36392)
1 day 11 hours ago
A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/admin_product.ph. Executing manipulation of the argument pid can lead to sql injection.
The identification of this vulnerability is CVE-2025-12338. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com