“Crimenetwork” 平台关停后死灰复燃,再遭德国当局捣毁
德国警方成功捣毁了德语网络犯罪市场 “Crimenetwork” 的复活版本,而就在数月前,该平台才首次被关停。这个重生的网站已经吸引了超过 2.2 万名用户和 100 多名卖家,这表明,一旦运营者能够重建基础设施,地下市场恢复的速度有多快。 德国联邦刑事警察局(BKA)发布的公告称:“在 2024 年底被执法部门关停之前,‘Crime...
Aggregator
“Crimenetwork” 平台关停后死灰复燃,再遭德国当局捣毁
1 month ago
error code: 1003
戴尔支持助手导致戴尔Windows 11设备频繁黑屏死机 大约每30分钟就会死机1次
1 month ago
SailPoint 披露 GitHub 代码库遭黑客攻击
1 month ago
身份管理与治理服务提供商 SailPoint 披露了一起涉及其 GitHub 代码库的网络安全事件。 在提交给美国证券交易委员会(SEC)的文件中,该公司透露此次事件发生于 4 月 20 日,且已迅速得到控制。 提交给 SEC 的文件称:“2026 年 4 月 20 日,我们检测到部分 GitHub 代码库遭到未经授权的访问。我们的事件响应团队迅速终止了未授...
hackernews
SailPoint 披露 GitHub 代码库遭黑客攻击
1 month ago
error code: 1003
微软投资OpenAI时目标获得920亿美元回报
1 month ago
微软投资OpenAI时目标获得920亿美元回报微软公司在其早期对OpenAI公司的大规模投资中,设定了 920亿美元的回报目标。双方这一具有里程碑意义的合作,帮助开启了当前的AI时代。这一目标包含在微
权限绕过
1 month ago
权限绕过
1 month ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
美国FCC发布公告宣布允许外国制造的路由器发布固件更新直到2029年
1 month ago
【原创】某加密IM官网供应链事件,“离岸”爱国者卷土重来
1 month ago
奇安信威胁情报中心红雨滴团队私有情报生产流程发现一家面向中文用户提供私密IM的软件官网上的安装包被替换。被替换的安装包除了正常流程外,还会释放如下组件,内存加载SNOWLIGHT下载者,最终运行魔改nps隧道。
【原创】某加密IM官网供应链事件,“离岸”爱国者卷土重来
1 month ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
What is Google Widevine
1 month ago
What is Google Widevine?WidevineCDM (Content Decryption Module) is a DRM component
CVE-2014-2986 | Linux Foundation Xen 4.4.0 on ARM GIC Distributor xen/arch/arm/vgic.c vgic_distr_mmio_write input validation (XSA-94 / XFDB-92723)
1 month ago
A vulnerability was found in Linux Foundation Xen 4.4.0 on ARM. It has been rated as problematic. Affected by this issue is the function vgic_distr_mmio_write of the file xen/arch/arm/vgic.c of the component GIC Distributor. This manipulation causes improper input validation.
The identification of this vulnerability is CVE-2014-2986. The attack can only be executed locally. There is no exploit available.
Applying a patch is the recommended action to fix this issue.
vuldb.com
CVE-2014-0112 | Apache Struts up to 2.3.16.1 Class Loader access control (EDB-33142 / Nessus ID 73763)
1 month ago
A vulnerability was found in Apache Struts up to 2.3.16.1 and classified as critical. This impacts an unknown function of the component Class Loader. Executing a manipulation can lead to improper access controls.
This vulnerability is handled as CVE-2014-0112. The attack can be executed remotely. Additionally, an exploit exists. This vulnerability has historical importance owing to its background and reception.
It is advised to implement the suggested workaround.
vuldb.com
CVE-2014-0515 | Adobe Flash Player up to 13.0.0.201 Pixel Bender memory corruption (APSB14-13 / EDB-33333)
1 month ago
A vulnerability categorized as very critical has been discovered in Adobe Flash Player up to 13.0.0.201. Impacted is an unknown function of the component Pixel Bender. Executing a manipulation can lead to memory corruption.
The identification of this vulnerability is CVE-2014-0515. The attack may be launched remotely. Furthermore, there is an exploit available. This vulnerability is historically impactful due to its background and the reception it garnered.
A worm is spreading and is exploiting this vulnerability automatically.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2014-2383 | dompdf 0.6.0 dompdf.php php:/filter/read=convertbase64-encode/resource information disclosure (EDB-33004)
1 month ago
A vulnerability marked as problematic has been reported in dompdf 0.6.0. This impacts an unknown function of the file dompdf.php. Performing a manipulation of the argument php:/filter/read=convertbase64-encode/resource results in information disclosure.
This vulnerability is reported as CVE-2014-2383. The attack is possible to be carried out remotely. Moreover, an exploit is present.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2014-2657 | PaperCut MF 14.1 Remote Code Execution (XFDB-92650 / SBV-44685)
1 month ago
A vulnerability described as critical has been identified in PaperCut MF 14.1. Affected is an unknown function. Executing a manipulation can lead to Remote Code Execution.
This vulnerability appears as CVE-2014-2657. The attack may be performed from remote. There is no available exploit.
Upgrading the affected component is recommended.
vuldb.com
CVE-2014-2658 | Papercut MF up to 14.1 denial of service (ID 122058 / XFDB-92649)
1 month ago
A vulnerability classified as problematic has been found in Papercut MF up to 14.1. Affected by this vulnerability is an unknown functionality. The manipulation leads to denial of service.
This vulnerability is traded as CVE-2014-2658. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2014-2715 | VideoWhisper 7.x-1.0/7.x-1.1/7.x-1.3/7.x-1.x logout.tpl.php Message cross site scripting (ID 12943 / XFDB-92777)
1 month ago
A vulnerability classified as problematic was found in VideoWhisper 7.x-1.0/7.x-1.1/7.x-1.3/7.x-1.x. Affected by this issue is some unknown functionality of the file vwrooms\templates\logout.tpl.php. The manipulation of the argument Message results in cross site scripting.
This vulnerability is known as CVE-2014-2715. It is possible to launch the attack remotely. No exploit is available.
vuldb.com
CVE-2014-2846 | Wdc Arkeia Virtual Appliance up to 10.2.6 Firmware Cookie path traversal (EDB-33005 / Nessus ID 74221)
1 month ago
A vulnerability, which was classified as problematic, has been found in Wdc Arkeia Virtual Appliance up to 10.2.6. This affects an unknown part of the component Firmware. This manipulation of the argument Cookie causes path traversal.
This vulnerability is handled as CVE-2014-2846. The attack can be initiated remotely. Additionally, an exploit exists.
It is advisable to upgrade the affected component.
vuldb.com