Aggregator
2022 年度总结
9 months 2 weeks ago
年度总结,虽迟但到。
Tr0y
2023 年度总结
9 months 2 weeks ago
年度总结,虽迟但到。
Tr0y
CVE-2018-8831 | Kodi up to 17.6 Persistent cross site scripting (ID 17814 / EDB-44487)
9 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Kodi up to 17.6. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting (Persistent).
This vulnerability is handled as CVE-2018-8831. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
2024 云南之旅
9 months 2 weeks ago
自从我跳出 技术 == 计算机技术 的牢笼之后,就一直想在博客里加入一些别的“技术活”,从今天起,博客会新增一个标签:生活黑客 用于单独存放这类文章。
Tr0y
CVE-2024-44240 | Apple macOS Font information disclosure (Nessus ID 211697)
9 months 2 weeks ago
A vulnerability classified as problematic has been found in Apple macOS. This affects an unknown part of the component Font Handler. The manipulation leads to information disclosure.
This vulnerability is uniquely identified as CVE-2024-44240. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-44240 | Apple visionOS Font information disclosure (Nessus ID 211697)
9 months 2 weeks ago
A vulnerability classified as problematic was found in Apple visionOS. This vulnerability affects unknown code of the component Font Handler. The manipulation leads to information disclosure.
This vulnerability was named CVE-2024-44240. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-44240 | Apple iOS/iPadOS Font information disclosure (Nessus ID 211697)
9 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Apple iOS and iPadOS. This issue affects some unknown processing of the component Font Handler. The manipulation leads to information disclosure.
The identification of this vulnerability is CVE-2024-44240. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-44240 | Apple tvOS Font information disclosure (Nessus ID 211697)
9 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in Apple tvOS. Affected is an unknown function of the component Font Handler. The manipulation leads to information disclosure.
This vulnerability is traded as CVE-2024-44240. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-44217 | Apple iOS/iPadOS 17.x Password Autofill information disclosure
9 months 2 weeks ago
A vulnerability was found in Apple iOS and iPadOS 17.x and classified as problematic. Affected by this issue is some unknown functionality of the component Password Autofill. The manipulation leads to information disclosure.
This vulnerability is handled as CVE-2024-44217. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-44240 | Apple watchOS Font information disclosure (Nessus ID 211697)
9 months 2 weeks ago
A vulnerability has been found in Apple watchOS and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Font Handler. The manipulation leads to information disclosure.
This vulnerability is known as CVE-2024-44240. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
11 Application Security Testing Types
9 months 2 weeks ago
As organizations accelerate their release cycles and rely on complex software ecosystems, security vulnerabilities become harder to track—and easier for attackers to exploit. From open-source dependencies to misconfigurations in production, security gaps can lead to data breaches, compliance failures, and costly downtime.
The post 11 Application Security Testing Types appeared first on Cycode.
The post 11 Application Security Testing Types appeared first on Security Boulevard.
Cycode Team
It's so overt it's covert: leveraging classic HUMINT tactics in CTI investigations
9 months 2 weeks ago
SANS Digital Forensics and Incident Response
【资料】美国国防与国家安全最重要的十项新兴技术分别涉及哪些公司?
9 months 2 weeks ago
报告提出了十项关键技术,包括人工智能加速器芯片、替代定位导航定时技术、自主群集、生成式AI软件开发、高密度储能、高超音速技术、多模态AI、非动能反无人机系统、后量子密码学和空间领域感知技术。
CVE-2024-44237 | Apple macOS up to 13.6/14.6 File out-of-bounds (Nessus ID 211697)
9 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in Apple macOS up to 13.6/14.6. This affects an unknown part of the component File Handler. The manipulation leads to out-of-bounds read.
This vulnerability is uniquely identified as CVE-2024-44237. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-51509 | Tiki up to 27.0 Module tiki-admin_modules.php Name cross site scripting (ID 10)
9 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in Tiki up to 27.0. Affected is an unknown function of the file tiki-admin_modules.php of the component Module Handler. The manipulation of the argument Name leads to cross site scripting.
This vulnerability is traded as CVE-2024-51509. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
Tangerine Turkey: The USB worm that mines crypto | Red Canary Threat Intelligence
9 months 2 weeks ago
Red Canary
【漏洞挖掘技巧】新手师傅从0到1如何挖洞
9 months 2 weeks ago
[Meachines] [Easy] Knife PHP 8.1.0-dev RCE+knife权限提升
9 months 2 weeks ago
#PHP 8.1.0-dev RCE #knife权限提升
CVE-2025-21716
9 months 2 weeks ago
Currently trending CVE - Hype Score: 1 - In the Linux kernel, the following vulnerability has been resolved:
vxlan: Fix uninit-value in vxlan_vnifilter_dump()
KMSAN reported an uninit-value access in vxlan_vnifilter_dump() [1].
If the length of the netlink message payload is less than
sizeof(struct tunnel_msg), ...