Aggregator
CVE-2024-11676 | CodeAstro Hospital Management System 1.0 Add Laboratory Equipment Page his_admin_add_lab_equipment.php cross site scripting
CVE-2024-11675 | CodeAstro Hospital Management System 1.0 Add Patient Details Page his_admin_register_patient.php cross site scripting
云存储桶的一种高危挖法
Python NodeStealer: Targeting Facebook Business Accounts to Harvest Login Credentials
The Python-based NodeStealer, a sophisticated info-stealer, has evolved to target new information and employ advanced techniques, whereas recent variants focus on stealing Facebook Ads Manager budget details, potentially enabling malicious ad campaigns. Now they pilfer credit card information alongside browser credentials, and to bypass security measures, the malware utilizes Windows Restart Manager to unlock browser […]
The post Python NodeStealer: Targeting Facebook Business Accounts to Harvest Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Submit #448789: CodeAstro HMS Hospital Management System 1.0 Stored XSS [Accepted]
Windows 11 ломает игры Ubisoft: Microsoft блокирует обновление 24H2
CVE-2024-11674 | CodeAstro Hospital Management System 1.0 his_doc_update-account.php doc_dpic unrestricted upload
CVE-2024-11673 | 1000 Projects Bookstore Management System 1.0 cross-site request forgery
一个革命的幸存者_曾志回忆实录
Submit #448705: CodeAstro HMS Hospital Management System 1.0 Arbitrary Authenticated File Upload Leading to RCE [Accepted]
CVE-2024-10729 | Booking & Appointment Plugin for WooCommerce up to 6.9.0 on WordPress Option Update access control
Submit #448470: 1000 Projects Bookstore Management System PHP MySQL Project V1.0 Cross-Site Request Forgery [Accepted]
CVE-2024-11498 | libjxl JPEG XL Decoder resource consumption
CVE-2024-27134 | mlflow up to 2.15.x API spark_udf toctou
CVE-2024-11403 | LibJXL JPEG Decoder out-of-bounds write
四校签约、六家授牌!360携手河南高校再摘网络安全人才培育新果实
CVE-2014-5207 | Linux Kernel Remount namespace.c do_remount access control (EDB-34923 / Nessus ID 78360)
Microsoft asks Windows Insiders to try out the controversial Recall feature
Participants of the Windows Insider Program that have a Qualcomm Snapdragon-powered Copilot+ PC can now try out Recall, the infamous snapshot-taking, AI-powered feature that was met with much criticism when it was unveiled earlier this year. “We heard your feedback on needing a secure, controllable experience for using Recall in your organizations. Recall will be disabled by default and IT can enable this feature through new policies before it will be made available to individuals … More →
The post Microsoft asks Windows Insiders to try out the controversial Recall feature appeared first on Help Net Security.