Aggregator

CVE-2007-2537 | NPDS 5.10 mainfile.php sql injection (EDB-3855 / XFDB-34109)

3 days 19 hours ago

A vulnerability labeled as critical has been found in NPDS 5.10. The impacted element is an unknown function of the file mainfile.php. The manipulation results in sql injection. This vulnerability was named CVE-2007-2537. The attack may be performed from remote. In addition, an exploit is available.

vuldb.com

CVE-2007-6633 | Netbizcity FAQMasterFlexPlus 1.5 faq.php cat_name cross site scripting (EDB-30945 / XFDB-39287)

Vuldb Updates

3 days 19 hours ago

A vulnerability was found in Netbizcity FAQMasterFlexPlus 1.5 and classified as problematic. Affected by this issue is some unknown functionality of the file faq.php. The manipulation of the argument cat_name results in cross site scripting. This vulnerability was named CVE-2007-6633. The attack may be performed from remote. In addition, an exploit is available.

vuldb.com

CVE-2007-1635 | Net Portal Dynamic 5.10 privilege escalation (EDB-3505 / SA24571)

Vuldb Updates

3 days 19 hours ago

A vulnerability classified as critical was found in Net Portal Dynamic Portal 5.10. The impacted element is an unknown function. Executing manipulation can lead to privilege escalation. This vulnerability is tracked as CVE-2007-1635. The attack can be launched remotely. Moreover, an exploit is present.

vuldb.com

New EDR-Redir Tool Breaks EDR Exploiting Bind Filter and Cloud Filter Driver

Cyber Security News

3 days 20 hours ago

A new tool called EDR-Redir has emerged, allowing attackers to redirect or isolate the executable folders of popular Endpoint Detection and Response (EDR) solutions. Demonstrated by cybersecurity researcher TwoSevenOneT, the technique leverages Windows’ Bind Filter driver (bindflt.sys) and Cloud Filter driver (cldflt.sys) to undermine EDR protections without requiring kernel-level access. This user-mode exploit, rooted in […]

The post New EDR-Redir Tool Breaks EDR Exploiting Bind Filter and Cloud Filter Driver appeared first on Cyber Security News.

Guru Baran

【情报】美军近一年各军种兵力均呈现增加态势

丁爸情报分析师的工具箱

3 days 20 hours ago

整体来看，美军现役人数在过去一年增加了约2.46万人，主要来源于陆军、海军、海军陆战队和海岸警卫队的小幅扩编。

Mem3nt0 mori – The Hacking Team is back!

不安全

3 days 20 hours ago

嗯，用户让我总结一下这篇文章的内容，控制在100字以内，而且不需要用“文章内容总结”之类的开头。首先，我需要通读整篇文章，抓住主要信息。文章讲的是Kaspersky在2025年3月检测到的一波网络攻击。攻击者通过钓鱼邮件发送个性化链接，用户点击后访问恶意网站，利用Chrome的零日漏洞CVE-2025-2783进行攻击。这个漏洞允许攻击者绕过Chrome的沙盒保护，最终植入间谍软件Dante。 Dante是由意大利公司Memento Labs开发的商业间谍软件，之前称为Hacking Team。文章还提到攻击活动被命名为Operation ForumTroll，主要针对俄罗斯和白俄罗斯的组织。总结的时候要注意时间、攻击方式、漏洞、间谍软件和目标。控制在100字以内，所以要简洁明了。 Kaspersky detected a sophisticated cyberattack in March 2025, targeting organizations in Russia and Belarus via personalized phishing emails. The campaign, named Operation ForumTroll, exploited a zero-day vulnerability (CVE-2025-2783) in Google Chrome to bypass its sandbox protection. The attack chain involved a malicious website that executed an exploit to download and install malware, including a spyware called Dante developed by Memento Labs (formerly Hacking Team). The operation primarily aimed at espionage through keylogging and file theft.

俄罗斯反垄断局要求苹果将其本土搜索引擎预装为俄罗斯版iOS设备的默认搜索引擎

不安全

3 days 20 hours ago

好的，用户让我用中文帮他总结一下这篇文章的内容，控制在100字以内，而且不需要用“文章内容总结”之类的开头，直接写描述就行。首先，我需要通读整篇文章，抓住主要信息。文章讲的是俄罗斯联邦反垄断局要求苹果公司将本土搜索引擎Yandex设为Safari的默认引擎。原因是苹果预装非俄罗斯的搜索引擎，导致不公平竞争。Yandex是俄罗斯的主要搜索引擎，所以俄罗斯希望替代谷歌。苹果需要在10月31日前回应。接下来，我需要提取关键点：俄罗斯反垄断局、苹果、Yandex、Safari默认引擎、替代谷歌、10月31日回应。然后把这些信息浓缩到100字以内。可能会想到：“俄罗斯要求苹果将本土搜索引擎Yandex设为Safari默认引擎，以替代谷歌，避免不公平竞争。苹果需在10月31日前回应。”这样简洁明了。检查一下是否符合要求：没有使用“文章内容总结”之类的开头，控制在了100字以内，涵盖了主要信息。看起来没问题。俄罗斯要求苹果将本土搜索引擎Yandex设为Safari默认引擎以替代谷歌，并需在10月31日前回应。

一次针对 iOS 间谍武器开发人员的 0day 攻击到美国十大政府承包商 L3Harris 的陷落

奇安信威胁情报中心

3 days 20 hours ago

L3Harris子公司Trenchant网络业务总经理Peter Williams被控将同一批0day秘密出售，原iOS研究员Jay Gibson被误判为内鬼遭开除，事件暴露美国十大政府承包商双重失守：既被外部0day攻破，又出现内鬼外泄

可能算是重大更新：iOS 26.1将允许后台备份照片而不必每次必须前台开启备份应用

不安全

3 days 20 hours ago

iOS 26.1允许第三方应用在后台静默上传照片，无需前台等待或锁定手机。此功能借助PhotoKit的新协议实现，提升用户体验并可能符合欧盟数字市场法要求。

MyVidster (2025) - 3,864,364 breached accounts

不安全

3 days 20 hours ago

MyVidster在2025年10月发生数据泄露，影响390万个账户。建议立即更改密码并启用双因素认证。

New CoPhish Attack Exploits Copilot Studio to Exfiltrate OAuth Tokens

Cyber Security News

3 days 20 hours ago

A sophisticated phishing technique called CoPhish exploits Microsoft Copilot Studio to trick users into granting attackers unauthorized access to their Microsoft Entra ID accounts. Dubbed by Datadog Security Labs, this method uses customizable AI agents hosted on legitimate Microsoft domains to wrap traditional OAuth consent attacks, making them appear trustworthy and bypassing user suspicions. The […]

The post New CoPhish Attack Exploits Copilot Studio to Exfiltrate OAuth Tokens appeared first on Cyber Security News.

Guru Baran

[教程] 立即开启Windows 11 24H2/25H2所有新功能无需等待微软推送

不安全

3 days 21 hours ago

文章介绍如何通过ViveTool工具提前启用Windows 11 24H2/25H2隐藏的新功能开关，无需等待微软推送。这些新功能包括改进的游戏手柄支持、优化的资源管理器和更灵活的音量指示器位置等。需确保系统版本为指定Build号后才能有效启用。

INC

Dark Feed IO

3 days 21 hours ago

You must login to view this content

cohenido

INC

Dark Feed IO

3 days 21 hours ago

You must login to view this content

cohenido

苹果将在明年为iOS地图应用增加商家广告供商家在地图中付费提高曝光率

不安全

3 days 21 hours ago

苹果计划在iOS地图应用中投放商家广告，付费商家可获得更多搜索曝光。尽管iOS系统广告较少，但苹果正逐步增加内置应用广告。中国市场使用高德地图数据，可能不受影响。

CVE-2022-50432 | Linux Kernel up to 6.0.6 kernfs_remove_by_name_ns use after free (WID-SEC-2025-2187)

Vuldb Updates

3 days 21 hours ago

A vulnerability identified as critical has been detected in Linux Kernel up to 6.0.6. The impacted element is the function kernfs_remove_by_name_ns. The manipulation leads to use after free. This vulnerability is documented as CVE-2022-50432. The attack requires being on the local network. There is not any exploit available. You should upgrade the affected component.

vuldb.com

CVE-2022-50433 | Linux Kernel up to 6.0.3 efi kfree use after free (WID-SEC-2025-2187)

Vuldb Updates

3 days 21 hours ago

A vulnerability was found in Linux Kernel up to 6.0.3 and classified as critical. Impacted is the function kfree of the component efi. Such manipulation leads to use after free. This vulnerability is referenced as CVE-2022-50433. The attack needs to be initiated within the local network. No exploit is available. It is suggested to upgrade the affected component.

vuldb.com

CVE-2022-50431 | Linux Kernel up to 6.0.6 ALSA i2sbus_add_dev memory leak (WID-SEC-2025-2187)

Vuldb Updates

3 days 21 hours ago

A vulnerability was found in Linux Kernel up to 6.0.6. It has been declared as critical. This issue affects the function i2sbus_add_dev of the component ALSA. Such manipulation leads to memory leak. This vulnerability is listed as CVE-2022-50431. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.

vuldb.com

CVE-2022-50430 | Linux Kernel up to 6.1.2 vub300_enable_sdio_irq state issue (WID-SEC-2025-2187)

Vuldb Updates

3 days 21 hours ago

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.2. This affects the function vub300_enable_sdio_irq. The manipulation leads to state issue. This vulnerability is uniquely identified as CVE-2022-50430. The attack can only be initiated within the local network. No exploit exists. It is advisable to upgrade the affected component.

vuldb.com

CVE-2025-62256 | Liferay Portal/DXP OpenAPI authorization (WID-SEC-2025-2397)

Vuldb Updates

3 days 21 hours ago

A vulnerability was found in Liferay Portal and DXP. It has been rated as problematic. The affected element is an unknown function of the component OpenAPI. This manipulation causes missing authorization. This vulnerability is registered as CVE-2025-62256. Remote exploitation of the attack is possible. No exploit is available.

vuldb.com

Aggregator

Managed ad