Aggregator

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

一款名为 TCLBanker 的新型木马，瞄准 59 家银行、金融科技及加密货币平台，通过伪装成罗技 AI Prompt Builder 的 MSI 安装程序来感染系统。   此外，该恶意软件包含针对 WhatsApp 和 Outlook 的自我传播蠕虫模块，能自动感染新的受害者。   这款新型银行木马由 Elastic 安全实验室发现，研究人员认为它是较旧的 Maverick...

error code: 1003

Ivanti 发出警告，一个影响 Endpoint Manager Mobile（EPMM）的新安全漏洞已在少量实际攻击中被利用。   这个严重程度较高的漏洞编号为 CVE - 2026 - 6973（CVSS 评分：7.2），是一个输入验证不当问题，影响 EPMM 12.6.1.1、12.7.0.1 和 12.8.0.1 版本之前的产品。   Ivanti 在今日发布的公告中...

error code: 1003

A vulnerability identified as problematic has been detected in Brother MFC-9970CDW L 1.10. This impacts an unknown function of the file admin/profile_settings_net.html of the component Firmware. The manipulation of the argument id/val leads to cross site scripting. This vulnerability is listed as CVE-2013-2671. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability was found in Apple iOS 6.0/6.1/7.0.5. It has been rated as critical. Affected by this vulnerability is an unknown functionality of the component WebKit. The manipulation leads to memory corruption. This vulnerability is documented as CVE-2014-1293. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Apple iOS 6.0/6.1/7.0.5. Affected by this issue is some unknown functionality of the component WebKit. The manipulation results in memory corruption. This vulnerability is reported as CVE-2014-1294. The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability classified as critical was found in Rocklobster Contact Form 7 up to 3.7.0. Affected is an unknown function of the component Contact Form. Such manipulation of the argument _wpcf7_captcha_challenge_captcha-719 leads to improper access controls. This vulnerability is documented as CVE-2014-2265. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as problematic, has been found in PowerArchiver 14.00/14.01/14.02/14.02.03. Affected by this vulnerability is an unknown functionality of the component Encryption. Performing a manipulation results in cryptographic issues. This vulnerability is reported as CVE-2014-2319. The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Marekkis Watermark 0.9.2. Affected by this issue is some unknown functionality. Executing a manipulation of the argument pfad can lead to cross site scripting. This vulnerability appears as CVE-2013-1758. The attack may be performed from remote. There is no available exploit.

A vulnerability has been found in Opensource Technologies Responsive Logo Slideshow and classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2013-1759. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Brother Mfc-9970cdw and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument kind results in cross site scripting. This vulnerability is known as CVE-2013-2507. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability was found in Brother Mfc-9970cdw. It has been classified as problematic. This issue affects some unknown processing. This manipulation of the argument arbitrary causes cross site scripting. This vulnerability is handled as CVE-2013-2670. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability, which was classified as critical, was found in WebKit. The impacted element is an unknown function. The manipulation results in memory corruption. This vulnerability is identified as CVE-2014-1293. The attack can be executed remotely. There is not any exploit available. You should upgrade the affected component.

A vulnerability has been found in WebKit and classified as critical. This affects an unknown function. This manipulation causes memory corruption. This vulnerability is tracked as CVE-2014-1294. The attack is possible to be carried out remotely. No exploit exists. The affected component should be upgraded.

网络安全研究人员披露了一个名为 PCPJack 的新型凭证窃取框架的细节，该框架瞄准暴露的云基础设施，并从相关环境中清除任何与 TeamPCP 相关的痕迹。   SentinelOne 安全研究员亚历克斯・德拉莫特（Alex Delamotte）在今日发布的一份报告中表示：“该工具集从云服务、容器、开发者工具、办公软件及金融服务中窃取凭证，然后通过攻击者控制的基础设施将数据泄...

error code: 1003

A vulnerability classified as problematic has been found in Tor up to 0.4.9.7. This affects an unknown function. The manipulation leads to incorrect provision of specified functionality. This vulnerability is uniquely identified as CVE-2026-44597. The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in AcademySoftwareFoundation OpenEXR up to 3.2.8/3.3.10/3.4.10. This affects the function readVariableLengthInteger of the component EXR File Handler. Performing a manipulation results in integer overflow. This vulnerability was named CVE-2026-42217. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.