Aggregator

A vulnerability was found in SGI IRIX up to 6.3 and classified as very critical. Affected by this issue is some unknown functionality of the component Library Handler. The manipulation of the argument LD_LIBRARY_PATH as part of Environment Variable leads to Remote Code Execution. This vulnerability is handled as CVE-1999-0073. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Sun Solaris 2.5.1/2.6/7.0. It has been declared as very critical. This vulnerability affects unknown code of the component X Window. The manipulation leads to improper authentication. This vulnerability was named CVE-1999-0241. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in wu-ftpd 2.4. It has been rated as critical. This issue affects some unknown processing of the component site exec Command. The manipulation leads to improper privilege management. The identification of this vulnerability is CVE-1999-0080. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Slackware Linux 3.0. Affected is an unknown function of the component mailx Command. The manipulation leads to race condition. This vulnerability is traded as CVE-1999-0123. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Sam Lantinga Splitvt 1.6.3. Affected by this vulnerability is an unknown functionality. The manipulation leads to memory corruption. This vulnerability is known as CVE-1999-0316. Local access is required to approach this attack. There is no exploit available.

A vulnerability, which was classified as critical, has been found in HP HP-UX 8/9. Affected by this issue is some unknown functionality of the component vhe_u_mnt. The manipulation leads to improper privilege management. This vulnerability is handled as CVE-1999-0325. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

ИИ-компании безнаказанно грабят Wikimedia.

A sophisticated remote access trojan (RAT) dubbed SnowDog has surfaced on underground cybercrime forums, prompting alarms among cybersecurity experts. Advertised as a tool for “corporate espionage and advanced intrusions,” the malware is being sold by an unidentified threat actor with claims of stealth, evasion, and remote control capabilities. The SnowDog RAT: Features and Risks The seller claims […]

The post Hackers Selling SnowDog RAT Malware With Remote Control Capabilities Online appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability has been found in Twinpictures Annual Archive Plugin up to 1.6.0 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-33598. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in AccessAlly PopupAlly Plugin up to 2.1.1 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-33639. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in EkoJR Advanced Post List Plugin up to 0.5.6.1 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-33642. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Brijesh Kothari Smart Maintenance Mode Plugin up to 1.4.4 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2024-33638. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Cryout Creations Serious Slider Plugin up to 1.2.4 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2024-33650. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Caldera OpenUnix 8.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file scoadminreg.cgi/service_action.cgi of the component webtop. The manipulation of the argument -c leads to improper privilege management. This vulnerability is handled as CVE-2002-0311. The attack may be launched remotely. Furthermore, there is an exploit available.

Semperis claims 62% of water and electricity providers were hit by cyber-attacks in the past year

使用nmap进行端口探测，发现存在多个端口存活。

近日，绿盟科技CERT监测到Vite发布安全公告，修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开，请相关用户尽快采取措施进行防护。

The computer scientist and AI researcher shares her thoughts on the technology’s potential and pitfalls – and what may lie ahead for us

近日，绿盟科技CERT监测到Vite发布安全公告，修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开，请相关用户尽快采取措施进行防护。

近日，绿盟科技CERT监测到Vite发布安全公告，修复了Vite任意文件读取漏洞(CVE-2025-31125)。目前漏洞细节与PoC已公开，请相关用户尽快采取措施进行防护。