AFLGO的源码阅读(一)
对AFLGO中的LLVM插桩模式进行源码阅读分析
Aggregator
哥斯拉的连接流程分析以及实现自己的魔改webshell
5 months 2 weeks ago
本文分析了哥斯拉的连接流程,对哥斯拉webshell工具的关键代码进行了分析,并且动手实现了一个php的aes-base64的魔改webshell
玄机平台 流量分析题目合集WP
5 months 2 weeks ago
涉及哥斯拉4.0、ekp、冰蝎3.0jsp以及某变异webshell流量
TAG-144: Actors Attacking Government Entities With New Tactics, Techniques, and Procedures
5 months 2 weeks ago
The threat actor known as TAG-144, also referred to as Blind Eagle or APT-C-36, has been linked to five distinct activity clusters operating from May 2024 through July 2025, primarily targeting Colombian government entities at local, municipal, and federal levels. This cyber threat group, active since at least 2018, employs a sophisticated blend of cyber-espionage […]
The post TAG-144: Actors Attacking Government Entities With New Tactics, Techniques, and Procedures appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
Akira
5 months 2 weeks ago
You must login to view this content
cohenido
Akira
5 months 2 weeks ago
You must login to view this content
cohenido
Akira
5 months 2 weeks ago
You must login to view this content
cohenido
CVE-2025-9504 | Campcodes Online Loan Management System 1.0 ajax.php?action=save_plan ID sql injection
5 months 2 weeks ago
A vulnerability was found in Campcodes Online Loan Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=save_plan. The manipulation of the argument ID results in sql injection.
This vulnerability is identified as CVE-2025-9504. The attack can be executed remotely. Additionally, an exploit exists.
vuldb.com
CVE-2025-9505 | Campcodes Online Loan Management System 1.0 ajax.php?action=save_loan_type ID sql injection
5 months 2 weeks ago
A vulnerability was found in Campcodes Online Loan Management System 1.0. It has been classified as critical. Affected by this issue is some unknown functionality of the file /ajax.php?action=save_loan_type. This manipulation of the argument ID causes sql injection.
This vulnerability is tracked as CVE-2025-9505. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com
CVE-2025-9506 | Campcodes Online Loan Management System 1.0 ajax.php?action=delete_plan ID sql injection
5 months 2 weeks ago
A vulnerability was found in Campcodes Online Loan Management System 1.0. It has been declared as critical. This affects an unknown part of the file /ajax.php?action=delete_plan. Such manipulation of the argument ID leads to sql injection.
This vulnerability is listed as CVE-2025-9506. The attack may be performed from a remote location. In addition, an exploit is available.
vuldb.com
CVE-2025-9511 | itsourcecode Apartment Management System 1.0 /visitor/addvisitor.php ID sql injection
5 months 2 weeks ago
A vulnerability was found in itsourcecode Apartment Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /visitor/addvisitor.php. Such manipulation of the argument ID leads to sql injection.
This vulnerability is referenced as CVE-2025-9511. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com
CVE-2025-9509 | itsourcecode Apartment Management System 1.0 fair_info_all.php fid sql injection
5 months 2 weeks ago
A vulnerability was found in itsourcecode Apartment Management System 1.0. It has been classified as critical. This issue affects some unknown processing of the file /report/fair_info_all.php. Performing manipulation of the argument fid results in sql injection.
This vulnerability is identified as CVE-2025-9509. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com
CVE-2025-9507 | itsourcecode Apartment Management System 1.0 /report/visitor_info.php vid sql injection
5 months 2 weeks ago
A vulnerability was found in itsourcecode Apartment Management System 1.0. It has been declared as critical. Impacted is an unknown function of the file /report/visitor_info.php. Executing manipulation of the argument vid can lead to sql injection.
This vulnerability is tracked as CVE-2025-9507. The attack can be launched remotely. Moreover, an exploit is present.
vuldb.com
CVE-2025-9510 | itsourcecode Apartment Management System 1.0 /branch/addbranch.php ID sql injection
5 months 2 weeks ago
A vulnerability was found in itsourcecode Apartment Management System 1.0. It has been rated as critical. The affected element is an unknown function of the file /branch/addbranch.php. The manipulation of the argument ID leads to sql injection.
This vulnerability is listed as CVE-2025-9510. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com
CVE-2025-9508 | itsourcecode Apartment Management System 1.0 /report/rented_info.php rsid sql injection
5 months 2 weeks ago
A vulnerability categorized as critical has been discovered in itsourcecode Apartment Management System 1.0. The impacted element is an unknown function of the file /report/rented_info.php. The manipulation of the argument rsid results in sql injection.
This vulnerability is cataloged as CVE-2025-9508. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-9513 | editso fuso up to 1.0.4-beta.7 mod.rs PenetrateRsaAndAesHandshake priv_key inadequate encryption
5 months 2 weeks ago
A vulnerability identified as problematic has been detected in editso fuso up to 1.0.4-beta.7. This affects the function PenetrateRsaAndAesHandshake of the file src/net/penetrate/handshake/mod.rs. This manipulation of the argument priv_key causes inadequate encryption strength.
This vulnerability is registered as CVE-2025-9513. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com
CVE-2025-57846 | Digital Arts i-フィルタ default permission
5 months 2 weeks ago
A vulnerability was found in Digital Arts i-フィルタ. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to incorrect default permissions.
This vulnerability is referenced as CVE-2025-57846. The attack can only be performed from a local environment. No exploit is available.
Upgrading the affected component is advised.
vuldb.com
CVE-2025-48081 | Printeers Print & Ship Plugin up to 1.17.0 on WordPress path traversal
5 months 2 weeks ago
A vulnerability categorized as problematic has been discovered in Printeers Print & Ship Plugin up to 1.17.0 on WordPress. Impacted is an unknown function. The manipulation results in path traversal: '.../...//'. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is identified as CVE-2025-48081. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2025-57797 | PFU ScanSnap Manager Installer prior 6.5L61 privileges assignment
5 months 2 weeks ago
A vulnerability labeled as critical has been found in PFU ScanSnap Manager Installer. The impacted element is an unknown function. Such manipulation leads to incorrect privilege assignment.
This vulnerability is listed as CVE-2025-57797. The attack must be carried out locally. There is no available exploit.
The affected component should be upgraded.
vuldb.com
CVE-2025-49035 | Admin Menu Groups Plugin up to 0.1.2 on WordPress cross site scripting
5 months 2 weeks ago
A vulnerability labeled as problematic has been found in Admin Menu Groups Plugin up to 0.1.2 on WordPress. This issue affects some unknown processing. Such manipulation leads to cross site scripting.
This vulnerability is referenced as CVE-2025-49035. It is possible to launch the attack remotely. No exploit is available.
vuldb.com