Aggregator

Submit #511471 / VDB-298565

Submit #511466 / VDB-298564

ВВС США тренируют своих бойцов по-новому.

A vulnerability was found in TeamPasswordManager up to 12.162.284 and classified as problematic. Affected by this issue is some unknown functionality of the component New Password Handler. The manipulation of the argument name leads to cross site scripting. This vulnerability is handled as CVE-2025-26091. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in SourceCodester Best Church Management Software 1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/web_crud.php. The manipulation of the argument encryption leads to sql injection. This vulnerability is known as CVE-2025-1961. The attack can be launched remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

A cyber-espionage campaign targeting UAE aviation and transport has been identified by researchers, using customized lures to deploy Sosano malware

Submit #511426 / VDB-298563

A recent technical study conducted by researchers at Trinity College Dublin has revealed that Google collects and stores extensive user data on Android devices, even when pre-installed Google apps are never opened. The findings indicate that cookies, device identifiers, and tracking links are downloaded and stored without user consent, raising significant privacy concerns. Persistent Tracking […]

The post Google Secretly Tracks Android Devices Even Without User-Opened Apps appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

In a concerning development, cybercriminals are increasingly targeting cloud-based generative AI (GenAI) services in a new attack vector dubbed “LLMjacking.” These attacks exploit non-human identities (NHIs) machine accounts and API keys to hijack access to large language models (LLMs) hosted on cloud platforms like AWS. By compromising NHIs, attackers can abuse expensive AI resources, generate […]

The post LLMjacking – Hackers Abuse GenAI With AWS NHIs to Hijack Cloud LLMs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability, which was classified as critical, was found in Codezips Gym Management System 1.0. Affected is an unknown function of the file /change_s_pwd.php. The manipulation of the argument login_id leads to sql injection. This vulnerability is traded as CVE-2025-1959. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #510865 / VDB-298561

A vulnerability, which was classified as critical, has been found in aaluoxiang oa_system 1.0. This issue affects some unknown processing of the file src/main/resources/mappers/address-mapper.xml. The manipulation of the argument outtype leads to sql injection. The identification of this vulnerability is CVE-2025-1958. The attack may be initiated remotely. Furthermore, there is an exploit available.

Submit #510782 / VDB-298560

Threat actors deploying the Black Basta and CACTUS ransomware families have been found to rely on the same BackConnect (BC) module for maintaining persistent control over infected hosts, a sign that affiliates previously associated with Black Basta may have transitioned to CACTUS. "Once infiltrated, it grants attackers a wide range of remote control capabilities, allowing them to execute

A vulnerability classified as problematic was found in code-projects Blood Bank System 1.0. This vulnerability affects unknown code of the file /BBfile/Blood/o+.php. The manipulation of the argument Bloodname leads to cross site scripting. This vulnerability was named CVE-2025-1957. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #510750 / VDB-298559

A previously undocumented polyglot malware is being deployed in attacks against aviation, satellite communication, and critical transportation organizations in the United Arab Emirates. [...]

A vulnerability classified as critical has been found in code-projects Shopping Portal 1.0. This affects an unknown part of the file /Shopping/Admin/index.php of the component Login. The manipulation of the argument password leads to sql injection. This vulnerability is uniquely identified as CVE-2025-1956. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

新型后门程序Sosano通过多语文件传播，针对阿联酋关键基础设施企业，威胁行为者利用入侵邮箱发送恶意邮件，CISO需警惕其扩散。

新型后门程序Sosano通过多语文件传播，针对阿联酋关键基础设施企业，威胁行为者利用入侵邮箱发送恶意邮件，CISO需警惕其扩散。