梆梆安全发布《2024年Q3移动应用安全风险报告》,全国66.12% Android APP涉及隐私违规现象
梆梆安全发布《2024年Q3移动应用安全风险报告》,全国66.12% Android APP涉及隐私违规现象
Aggregator
梆梆安全荣获第九届“创客中国”全国企业组500强 网安赛道10强
2 months 2 weeks ago
梆梆安全荣获第九届“创客中国”全国企业组500强 网安赛道10强
Прощай, Голливуд: TCL создает фильмы будущего с помощью искусственного интеллекта
2 months 2 weeks ago
TCL превращает современные технологии в новую реальность кино.
【安全圈】Windows 远程桌面服务漏洞允许攻击者执行远程代码
2 months 2 weeks ago
【安全圈】知名企业级文件传输产品存在漏洞,正在被黑客利用
2 months 2 weeks ago
【安全圈】OpenAI、Facebook、Instagram、WhatsApp 集体全球宕机
2 months 2 weeks ago
【安全圈】大量用户吐槽,Microsoft 365 又大面积宕机
2 months 2 weeks ago
CVE-2024-21574 | ltdrdata ComfyUI-Manager up to 2.51.0 POST Request /customnode/install pip code injection
2 months 2 weeks ago
A vulnerability, which was classified as very critical, was found in ltdrdata ComfyUI-Manager up to 2.51.0. This affects an unknown part of the file /customnode/install of the component POST Request Handler. The manipulation of the argument pip leads to code injection.
This vulnerability is uniquely identified as CVE-2024-21574. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-12160 | seraphinitesoft Seraphinite Bulk Discounts for WooCommerce Plugin up to 2.4.6 on WordPress add_query_arg cross site scripting
2 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in seraphinitesoft Seraphinite Bulk Discounts for WooCommerce Plugin up to 2.4.6 on WordPress. Affected by this issue is the function add_query_arg. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2024-12160. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-12333 | xTemos Woodmart Plugin up to 8.0.3 on WordPress Shortcode do_shortcode code injection
2 months 2 weeks ago
A vulnerability classified as critical was found in xTemos Woodmart Plugin up to 8.0.3 on WordPress. Affected by this vulnerability is the function do_shortcode of the component Shortcode Handler. The manipulation leads to code injection.
This vulnerability is known as CVE-2024-12333. The attack can be launched remotely. There is no exploit available.
vuldb.com
Windows 远程桌面服务漏洞允许攻击者执行远程代码
2 months 2 weeks ago
Windows 远程桌面服务漏洞允许攻击者执行远程代码
美国证券交易委员会推进纽约证券交易所提交的文件,以上市Bitwise比特币和以太坊ETF
2 months 2 weeks ago
安全客
网络安全童话与皇帝的新衣
2 months 2 weeks ago
网络安全童话与皇帝的新衣
Хакеры покусились на святое: атака на Krispy Kreme обернулась кошмаром для сладкоежек
2 months 2 weeks ago
Киберудар по бизнесу компании оставил в замешательстве любителей пончиков.
微软向Windows 10/11测试版用户推出新版连接手机 支持与iPhone互传文件
2 months 2 weeks ago
微软向Windows 10/11测试版用户推出新版连接手机 支持与iPhone互传文件
360与中国邮储银行强强联手,打造金融行业“数字样板工程”!
2 months 2 weeks ago
入选“数字样板工程”!360与中国邮储银行树立金融数字化转型新典范
Patchwork APT 以中国科研为目标开展新一轮活动
2 months 2 weeks ago
Patchwork APT 以中国科研为目标开展新一轮活动
Восточный фронт: Cloud Atlas запускает масштабную кибератаку на Россию
2 months 2 weeks ago
Группировка модернизирует арсенал, сохраняя традиционные цели.
微软修复MFA实施中的安全漏洞 攻击者可绕过安全策略在短时间内发起100万次登录
2 months 2 weeks ago
微软修复MFA实施中的安全漏洞 攻击者可绕过安全策略在短时间内发起100万次登录
会议预告 | 第四届数字取证与分析技术研讨会(DFA 2025)
2 months 2 weeks ago
会议预告 | 第四届数字取证与分析技术研讨会(DFA 2025)