Aggregator

YARA是一种恶意软件模式匹配的工具

A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. This affects an unknown part of the file /App/Tpl/Admin/Default/Log/index.html. The manipulation of the argument UserName/LogType leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-3531. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability classified as problematic was found in YouDianCMS 9.5.21. This vulnerability affects unknown code of the file /App/Tpl/Member/Default/Order/index.html.Attackers. The manipulation of the argument OrderNumber leads to cross site scripting. This vulnerability was named CVE-2025-3532. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

Модель построена с нуля и предназначена для наступательных операций.

Подробный обзор актуальных методов взлома Wi-Fi и эффективных способов защиты.

Таймер на залипание в Shorts — чтобы ты не проснулся утром с чувством вины.

Инструмент debug-gym удваивает успех моделей, но до человека ещё далеко.

Лазерно-плазменная технология вплотную приблизилась к практическому использованию.

A vulnerability, which was classified as critical, was found in Curtis Specialty Consulting IISPop 1.161/1.181. Affected is an unknown function of the component POP3 Service. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2002-2404. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

A vulnerability was found in BoldGrid Post and Page Builder Plugin up to 1.26.2 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-2888. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in WP Lab WP-Lister Lite for Amazon Plugin up to 2.6.11 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-2889. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability classified as problematic was found in KlbTheme Cosmetsy Theme, Partdo Theme, Bacola Theme, Medibazar Theme, Furnob Theme and Clotya Theme on WordPress. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2023-49839. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in EnvialoSimple EnvíaloSimple Plugin up to 2.3 on WordPress. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2023-51416. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Jeff Starr User Submitted Posts Plugin up to 20230901 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2023-7251. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Contact Form with Captcha Plugin up to 1.6.8 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2023-45771. It is possible to initiate the attack remotely. There is no exploit available.