Aggregator

A vulnerability was found in PHP 5.3.12/5.4.2. It has been rated as critical. This issue affects some unknown processing of the component Wrapper. The manipulation leads to improper access controls. The identification of this vulnerability is CVE-2012-2335. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in MySQL up to 5.0.0.0 and classified as critical. This issue affects some unknown processing of the component MySQL. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2010-1850. The attack may be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in OpenSSL up to 1.0.1b. This affects an unknown part in the library CBC Encryption. The manipulation leads to numeric error. This vulnerability is uniquely identified as CVE-2012-2333. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in MySQL up to 5.0.0.0 and classified as problematic. This vulnerability affects the function my_net_skip_rest. The manipulation leads to denial of service. This vulnerability was named CVE-2010-1849. The attack can be initiated remotely. There is no exploit available.

A staggering 17 million patient records, containing sensitive personal and medical information, have been stolen in a devastating ransomware attack on PIH Health. The cyberattack, which began on December 1, has disrupted operations at three hospitals: PIH Health Downey Hospital, PIH Health Whittier Hospital, and PIH Health Good Samaritan Hospital, as well as affiliated urgent […]

The post 17M Patient Records Stolen in Ransomware Attack on Three California Hospitals appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

•  如何使用SkyScalpel在云环境中对JSON策略执行安全分析与处理 - FreeBuf网络安全行业门户SkyScalpel: A Powerful Open-source Framework

12 月 20 日晚，一名袭击者驾驶一辆租赁的黑色宝马 SUV 在马格德堡圣诞市场内至少行驶了 400 米。此次袭击至少造成了 5 人死亡，包括一名幼童和四名妇女。此外还有 200 余人受伤，其中约 40 人伤情极为严重、90 人伤情较为严重。嫌犯 50 岁，为沙特阿拉伯裔，对伊斯兰教持批判立场，支持马斯克（Elon Musk）以及德国极右翼政党另类选择党（AfD）。在事件发生之后，马斯克的 X 一度停用了嫌犯的账号，在恢复之后 X 删除了所有支持马斯克和极右翼的推文，只保留最近一两个月的推文，并限制了搜索。

12 月 20 日晚，一名袭击者驾驶一辆租赁的黑色宝马 SUV 在马格德堡圣诞市场内至少行驶了 400 米。此次袭击至少造成了 5 人死亡，包括一名幼童和四名妇女。此外还有 200 余人受

Italy's data protection authority has fined ChatGPT maker OpenAI a fine of €15 million ($15.66 million) over how the generative artificial intelligence application handles personal data. The fine comes nearly a year after the Garante found that ChatGPT processed users' information to train its service in violation of the European Union's General Data Protection Regulation (GDPR). The authority

Italy's data protection authority has fined ChatGPT maker OpenAI a fine of €15 million ($15.66 mill

A vulnerability was found in Joomlaextensions Com Hmcommunity and classified as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument id leads to sql injection. The identification of this vulnerability is CVE-2011-4808. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Sourcecodester Online Enrollment Management System in PHP 1.0. Affected by this vulnerability is an unknown functionality of the component Add-Users Page. The manipulation of the argument Name leads to cross site scripting. This vulnerability is known as CVE-2021-40577. The attack can be launched remotely. Furthermore, there is an exploit available.

My last investigation is a file called “Albertsons_payment.GZ”, received via email. The file looks

A vulnerability was found in LIVE555 Media Server up to 2007.11.01. It has been declared as critical. This vulnerability affects the function parsertsprequeststring. The manipulation leads to improper input validation. This vulnerability was named CVE-2007-6036. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

GitLab 通知中国区用户将停止提供 GitLab.com 账号服务，建议现有用户迁移到极狐。中国 IP 地址现在访问 GitLab.com 会跳转到 about.gitlab.com，推荐用户访问极狐。Gundaz Aghayev 写道：GitLab 在发送中国地区用户的电子邮件通知中称： 关于您的 GitLab.com 账户的重要变更

请注意，GitLab 不再为位于中国大陆、澳门和香港的个人和组织提供 GitLab.com 帐户服务。我们的系统显示您正在从这些位置之一访问 GitLab。我们建议您注册极狐 JiHu https://gitlab.cn/saasmigration/ 。JiHu 是一家独立公司，提供本地化的 GitLab 产品，并拥有向该地区的个人和组织提供 GitLab 的独家权利。您必须在 2025 年 2 月 18 日之前完成迁移，之后 GitLab 将从我们的系统中删除您的帐户（You must complete the transition by 18-02-2025, after which GitLab will delete your account from our systems.）。如果您认为收到此通知有误，请从受支持的服务位置登录 GitLab.com。如需更多信息或支持，请随时联系 [email protected]。

此致，GitLab 团队

Трагедия в школе заставила власти принять решительные меры.

A vulnerability was found in Soundtouch 1.9.2 and classified as problematic. This issue affects the function TDStretch::acceptNewOverlapLength of the file source/SoundTouch/TDStretch.cpp of the component WAV File Handler. The manipulation leads to resource consumption. The identification of this vulnerability is CVE-2017-9259. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

TikTok Voice Generator是什么TikTok Voice Generator是一款免费文字转语音助手 剪映AI配音神器，可用于视频配音，可以合成热门的剪映AI配音和抖音音效，工具基