Aggregator

记录一次edusrc某证书大学漏洞挖掘

开源AI图像生成工具ComfyUI CRLF注入导致RCE分析（并非CVE-2025-67303）

ChatGPT Go is finally worth your money, as OpenAI has almost doubled the usage limits and enabled ultimate access to GPT 5.2 Instant. [...]

本文对于源代码进行分析，发现host主机头注入、任意文件上传、SQL注入、模板注入等多处漏洞

有没有想过，只给普通用户一条看似无害的权限： (ALL) NOPASSWD: /etc/passwd 然后把 /etc/passwd 改成可执行权限，就能被提权到 root shell？

A vulnerability was found in Linux Kernel up to 6.17.8. It has been declared as critical. Impacted is the function ndo_netpoll_cleanup. Executing a manipulation can lead to use after free. This vulnerability appears as CVE-2025-68245. The attacker needs to be present on the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.196/6.1.158/6.6.116/6.12.58/6.17.8 and classified as critical. Affected by this vulnerability is the function i915_vma_pin_ww. The manipulation results in state issue. This vulnerability is reported as CVE-2025-68244. The attacker must have access to the local network to execute the attack. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.17.8. This affects the function rt_bind_exception of the component ipv4. Executing a manipulation can lead to improper update of reference count. The identification of this vulnerability is CVE-2025-68241. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.

OpenAI is offering ChatGPT Plus, which costs $20 in the United States, for free, but the offer is valid for some accounts only, and it's a limited-time deal. [...]

在攻防对抗日益激烈的今天，传统的 WebShell 已难以在现代安全检测体系中存活。攻击者不断演化其技术手段，将恶意逻辑巧妙地嵌入看似无害的业务代码之中——或藏于配置结构，或混迹于日志流，或伪装成国际化时区、分页数据乃至生成器输出。这些手法不仅规避了基于关键字和静态特征的检测机制，更利用 PHP 语言本身的灵活性与高级特性（如流包装器、SPL 迭代器、动态变量、内存虚拟文件等），实现了高度隐蔽的命

本文深入分析了LlamaIndex存在的SQL注入漏洞，以及通过shellfs扩展来执行命令

ComfyUI-Manager 远程代码执行 (QVD-2026-2759) 漏洞复现

A vulnerability was found in Linux Kernel up to 6.1.158/6.6.117/6.12.59/6.17.9. It has been rated as critical. Affected by this issue is the function check_add_overflow of the component mtdchar. Performing a manipulation results in integer overflow. This vulnerability is reported as CVE-2025-68237. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.17.9. This affects the function dma_dev of the component mtd. Executing a manipulation can lead to null pointer dereference. This vulnerability appears as CVE-2025-68238. The attacker needs to be present on the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.17.9. It has been declared as critical. This affects the function Power_Condition of the component scsi. Such manipulation leads to improper initialization. This vulnerability is traded as CVE-2025-68236. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Image Photo Gallery Final Tiles Grid Plugin up to 3.6.9 on WordPress. It has been declared as critical. This issue affects some unknown processing. Such manipulation leads to missing authorization. This vulnerability is traded as CVE-2025-15466. The attack may be launched remotely. There is no exploit available.