Aggregator

A vulnerability classified as critical was found in Oracle Access Manager 10.1.4.x/11.1.1.7. This vulnerability affects unknown code of the component Web Server Plugin. The manipulation leads to information disclosure. This vulnerability was named CVE-2016-2107. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

2024-12-29卫星导航欺骗攻击与防御系统  ourren || discuss

卫星导航欺骗攻击与防御系统 by ourren

大语言模型威胁分类 by ourren

2024年全球国防网络空间情况综述（演习竞赛篇-上） by ourren

动态目标打击杀伤网构建范式和集成架构 by ourren

鸿蒙系统服务攻击面分析 by ourren

大模型应用实践系列三：用大模型挖漏洞 by ourren

更多最新文章，请访问SecWiki

A Threat Actor Claims to have Leaked the Data of Gammal Tech

A vulnerability was found in CodeAstro Simple Loan Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component Login. The manipulation of the argument email leads to sql injection. This vulnerability is known as CVE-2024-13038. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in 1000 Projects Attendance Tracking Management System 1.0. It has been classified as critical. Affected is the function attendance_report of the file /admin/report.php. The manipulation of the argument course_id leads to sql injection. This vulnerability is traded as CVE-2024-13037. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #471675 / VDB-289771

Submit #471674 / VDB-289770

A White House official confirmed that China-linked threat actor Salt Typhoon breached a ninth U.S. telecommunications company. A White House official confirmed that China-linked APT group Salt Typhoon has breached a ninth U.S. telecoms company as part of a cyberespionage campaign aimed at telco firms worldwide. “A White House official said Friday the US identified […]

A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/update_room.php. The manipulation of the argument id/name/password leads to sql injection. The identification of this vulnerability is CVE-2024-13036. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability has been found in code-projects Chat System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/update_user.php. The manipulation of the argument id leads to sql injection. This vulnerability was named CVE-2024-13035. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in code-projects Chat System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument name leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-13034. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, has been found in code-projects Chat System 1.0. Affected by this issue is some unknown functionality of the file /admin/chatroom.php. The manipulation of the argument id leads to cross site scripting. This vulnerability is handled as CVE-2024-13033. The attack may be launched remotely. Furthermore, there is an exploit available.

RipperSec Targeted the Website of Moto House

Submit #471113 / VDB-289769

Submit #471112 / VDB-289768

Submit #471111 / VDB-289767

Submit #471109 / VDB-289766