Цена экономии: пираты крадут деньги, данные и репутацию
Как фальшивый софт крадёт ваши данные.
Aggregator
CVE-2024-12404 | CF Internal Link Shortcode up to 1.1.0 on WordPress sql injection
8 months ago
A vulnerability, which was classified as critical, has been found in CF Internal Link Shortcode up to 1.1.0 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to sql injection.
This vulnerability is handled as CVE-2024-12404. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-12304 | Kadence Gutenberg Blocks with AI Plugin up to 3.4.2 on WordPress Button Link cross site scripting
8 months ago
A vulnerability, which was classified as problematic, was found in Kadence Gutenberg Blocks with AI Plugin up to 3.4.2 on WordPress. This affects an unknown part of the component Button Link Handler. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-12304. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-12505 | Trackserver Plugin up to 5.0.2 on WordPress cross site scripting
8 months ago
A vulnerability has been found in Trackserver Plugin up to 5.0.2 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-12505. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-12204 | Coupon X Plugin up to 1.3.5 on WordPress authorization
8 months ago
A vulnerability was found in Coupon X Plugin up to 1.3.5 on WordPress and classified as critical. This issue affects some unknown processing. The manipulation leads to missing authorization.
The identification of this vulnerability is CVE-2024-12204. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-12472 | Post Duplicator Plugin up to 2.36 on WordPress information disclosure
8 months ago
A vulnerability was found in Post Duplicator Plugin up to 2.36 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to information disclosure.
This vulnerability is traded as CVE-2024-12472. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-11327 | ClickWhale Plugin up to 2.4.1 on WordPress cross site scripting
8 months ago
A vulnerability was found in ClickWhale Plugin up to 2.4.1 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2024-11327. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-12116 | Unlimited Theme Addon For Elementor and WooCommerce Plugin Post information disclosure
8 months ago
A vulnerability was found in Unlimited Theme Addon For Elementor and WooCommerce Plugin up to 1.2.1 on WordPress. It has been declared as problematic. This vulnerability affects unknown code of the component Post Handler. The manipulation leads to information disclosure.
This vulnerability was named CVE-2024-12116. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-11915 | RRAddons for Elementor Plugin up to 1.1.0 on WordPress information disclosure
8 months ago
A vulnerability classified as problematic has been found in RRAddons for Elementor Plugin up to 1.1.0 on WordPress. Affected is an unknown function. The manipulation leads to information disclosure.
This vulnerability is traded as CVE-2024-11915. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
-2209017943
8 months ago
…跳至正文首页友情连接
-2209017943
8 months ago
杨龙
VLC 将使用本地 AI 为视频生成实时字幕,并翻译为 100 多种语言
8 months ago
Home业界消息VLC 将使用本地 AI 为视频生成实时字幕,并翻译为 100 多种语言
我工作里使用的软件和工作流
8 months ago
工具和工作流简单了,才能腾出脑子考虑复杂的事,才能腾出手把复杂的事尽量简单做。
我工作里使用的软件和工作流
8 months ago
记录一下我现在工作里使用的软件和工作流。先说几个特点:1. 我喜欢折腾,因此不同操作系统(Windows、Mac、Linux),不同类型的设备(不同系统的手机、不同系统的平板和大小各异的电子墨水设备)
Microsoft Sues Hacking Group Exploiting Azure AI for Harmful Content Creation
8 months ago
AI Security / CybersecurityMicrosoft has revealed that it's pursuing legal action against a "fore
Microsoft Sues Hacking Group Exploiting Azure AI for Harmful Content Creation
8 months ago
Microsoft has revealed that it's pursuing legal action against a "foreign-based threat–actor group" for operating a hacking-as-a-service infrastructure to intentionally get around the safety controls of its generative artificial intelligence (AI) services and produce offensive and harmful content.
The tech giant's Digital Crimes Unit (DCU) said it has observed the threat actors "develop
The Hacker News
CVE-2024-42174 | HCL DRYiCE MyXalytics 6.3 observable response discrepancy (KB0118149)
8 months ago
A vulnerability classified as problematic was found in HCL DRYiCE MyXalytics 6.3. This vulnerability affects unknown code. The manipulation leads to observable response discrepancy.
This vulnerability was named CVE-2024-42174. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-42172 | HCL DRYiCE MyXalytics 6.3 improper authentication (KB0118149)
8 months ago
A vulnerability classified as critical has been found in HCL DRYiCE MyXalytics 6.3. This affects an unknown part. The manipulation leads to improper authentication.
This vulnerability is uniquely identified as CVE-2024-42172. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-42173 | HCL DRYiCE MyXalytics 6.3 weak password (KB0118149)
8 months ago
A vulnerability was found in HCL DRYiCE MyXalytics 6.3. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to weak password requirements.
This vulnerability is handled as CVE-2024-42173. The attack may be launched remotely. There is no exploit available.
vuldb.com
2025-01-09: CVE-2017-0199 XLS --> HTA --> VBS --> steganography --> DBatLoader/GuiLoader style malware
8 months ago