How to Streamline Your Game Development Process: 4 Smart Solutions
Development teams worldwide spend countless hours wrestling with the same persistent challenges: tight deadlines, resource constraints, and the…
Aggregator
ClickFix Attack Tricks AI Summaries Into Pushing Malware
5 months 3 weeks ago
Because instructions appear to come from AI-generated content summaries and not an external source, the victim is more likely to follow them without suspicion.
Alexander Culafi
Каждую секунду мы живем в иллюзии. Время не течёт — оно просто 'есть' целиком
5 months 3 weeks ago
Поясняем, почему спор о «существовании» блок-вселенной важен для физики и популярной культуры.
CVE-2013-4354 | OpenStack Image Registry And Delivery Service (glance) input validation (Nessus ID 254322)
5 months 3 weeks ago
A vulnerability has been found in OpenStack Image Registry And Delivery Service (glance) and classified as problematic. This affects an unknown part of the component Registry. This manipulation causes improper input validation.
This vulnerability is handled as CVE-2013-4354. It is possible to launch the attack on the local host. There is not any exploit available.
The affected component should be upgraded.
vuldb.com
CVE-2012-6617 | FFmpeg 1.0/1.0.1 ffserver.c prepare_sdp_description denial of service (ID 1986 / Nessus ID 254323)
5 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in FFmpeg 1.0/1.0.1. The affected element is the function prepare_sdp_description of the file ffserver.c. The manipulation leads to denial of service.
This vulnerability is referenced as CVE-2012-6617. Remote exploitation of the attack is possible. No exploit is available.
Applying a patch is the recommended action to fix this issue.
vuldb.com
CVE-2008-5144 | Federico Di Gregorio nvidia-cg-toolkit 2.0.0015 Installer link following (Nessus ID 254327 / BID-32411)
5 months 3 weeks ago
A vulnerability classified as problematic was found in Federico Di Gregorio nvidia-cg-toolkit 2.0.0015. Impacted is an unknown function of the component Installer. Executing manipulation can lead to link following.
The identification of this vulnerability is CVE-2008-5144. The attack can only be executed locally. There is no exploit available.
vuldb.com
CVE-2013-6825 | Offis DCMTK up to 3.6.1 Privileges movescu.cc access control (ID 126883 / Nessus ID 254332)
5 months 3 weeks ago
A vulnerability was found in Offis DCMTK up to 3.6.1. It has been declared as problematic. This affects an unknown part in the library dcmnet/libsrc/scp.cc of the file movescu.cc of the component Privileges. Executing manipulation can lead to improper access controls.
This vulnerability is handled as CVE-2013-6825. It is possible to launch the attack on the local host. There is not any exploit available.
vuldb.com
CVE-2007-2353 | Apache Axis 1.0 Installation javaioFileNotFoundException information disclosure (EDB-29930 / Nessus ID 254329)
5 months 3 weeks ago
A vulnerability was found in Apache Axis 1.0. It has been declared as problematic. This vulnerability affects the function javaioFileNotFoundException of the component Installation. Executing manipulation can lead to information disclosure.
This vulnerability is registered as CVE-2007-2353. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com
CVE-2007-3719 | Linux Kernel 2.6.16 denial of service (Nessus ID 254336 / OSVDB-37127)
5 months 3 weeks ago
A vulnerability identified as problematic has been detected in Linux Kernel 2.6.16. The impacted element is an unknown function. The manipulation leads to denial of service.
This vulnerability is documented as CVE-2007-3719. The attack needs to be performed locally. There is not any exploit available.
vuldb.com
CVE-2008-4953 | firehol 1.256 link following (Nessus ID 254335)
5 months 3 weeks ago
A vulnerability categorized as problematic has been discovered in firehol 1.256. Affected by this issue is some unknown functionality. The manipulation results in link following.
This vulnerability is reported as CVE-2008-4953. The attack requires a local approach. No exploit exists.
The actual existence of this vulnerability is currently in question.
vuldb.com
CVE-2009-3583 | SQL-Ledger 2.8.24 path traversal (Nessus ID 254334 / XFDB-54967)
5 months 3 weeks ago
A vulnerability categorized as problematic has been discovered in SQL-Ledger 2.8.24. Impacted is an unknown function. The manipulation results in path traversal.
This vulnerability is identified as CVE-2009-3583. The attack can be executed remotely. There is not any exploit available.
vuldb.com
New Stealthy Malware Hijacking Cisco, TP-Link, and Other Routers for Remote Control
5 months 3 weeks ago
FortiGuard Labs has uncovered a sophisticated malware campaign targeting critical infrastructure devices from multiple vendors, with the “Gayfemboy” malware strain demonstrating advanced evasion techniques and multi-platform capabilities. The campaign affects organizations globally, exploiting vulnerabilities in DrayTek, TP-Link, Raisecom, and Cisco systems to establish persistent botnet infrastructure with backdoor access and distributed denial-of-service (DDoS) attack capabilities. […]
The post New Stealthy Malware Hijacking Cisco, TP-Link, and Other Routers for Remote Control appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Kaaviya
Warlock
5 months 3 weeks ago
You must login to view this content
cohenido
BSidesSF 2025: Into The Dragon’s Den
5 months 3 weeks ago
Creator, Author and Presenter: Jacob Salassi, Michele Freschi
Our deep appreciation to Security BSides - San Francisco and the Creators, Authors and Presenters for publishing their BSidesSF 2025 video content on YouTube. Originating from the conference’s events held at the lauded CityView / AMC Metreon - certainly a venue like no other; and via the organization's YouTube channel.
Additionally, the organization is welcoming volunteers for the BSidesSF Volunteer Force, as well as their Program Team & Operations roles. See their succinct BSidesSF 'Work With Us' page, in which, the appropriate information is to be had!
The post BSidesSF 2025: Into The Dragon’s Den appeared first on Security Boulevard.
Marc Handelman
Auchan retailer data breach impacts hundreds of thousands of customers
5 months 3 weeks ago
French retailer Auchan is informing that some sensitive data associated with loyalty accounts of several hundred thousand of its customers was exposed in a cyberattack. [...]
Bill Toulas
Beware! Google Ads Promote Fake Tesla Websites Soliciting Fraudulent Deposits
5 months 3 weeks ago
Scammers are using Google Ads to pose as Tesla in an elaborate cybercrime campaign that aims to obtain illicit preorders for the company’s unreleased Optimus humanoid robot and other items. These deceptive sponsored listings appear prominently in search results for terms like “Optimus Tesla preorder,” directing users to counterfeit websites that mimic Tesla’s official domain. […]
The post Beware! Google Ads Promote Fake Tesla Websites Soliciting Fraudulent Deposits appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
Russia weighs Google Meet ban as part of foreign tech crackdown
5 months 3 weeks ago
A senior Russian official said the government is considering blocking the video conferencing service Google Meet after brief disruptions in the country late last week.
FCC removes 1,200 voice providers from telephone networks in major robocall crackdown
5 months 3 weeks ago
Attorneys general across the country are also taking action in a program dubbed “Operation Robocall Roundup.”
The post FCC removes 1,200 voice providers from telephone networks in major robocall crackdown appeared first on CyberScoop.
Greg Otto
CVE-2025-55455 | DooTask 1.0.51 /msg/sendtext information disclosure (EUVD-2025-25703)
5 months 3 weeks ago
A vulnerability described as problematic has been identified in DooTask 1.0.51. This affects an unknown function of the file /msg/sendtext. The manipulation results in information disclosure.
This vulnerability is identified as CVE-2025-55455. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2025-29523 | D-Link DSL-7740C DSL7740C.V6.TR069.20211230 ping6 command injection (EUVD-2025-25705)
5 months 3 weeks ago
A vulnerability identified as critical has been detected in D-Link DSL-7740C DSL7740C.V6.TR069.20211230. This affects the function ping6. Performing manipulation results in command injection.
This vulnerability is identified as CVE-2025-29523. The attack can be initiated remotely. There is not any exploit available.
vuldb.com