Aggregator

A vulnerability classified as problematic was found in Adobe Substance3D Sampler up to 4.5. This vulnerability affects unknown code. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-47459. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Acronis Cyber Files on Windows and classified as problematic. This vulnerability affects unknown code of the component Enrollment InvitationPage. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-49392. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Hans Matzen wp-Monalisa Plugin up to 6.4 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2024-48038. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Edit WooCommerce Templates Plugin up to 1.1.2 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument page leads to cross site scripting. This vulnerability is handled as CVE-2024-10049. The attack may be launched remotely. There is no exploit available.

本文将分析漏洞原理、成因及影响，并提供修复建议，帮助开发者降低安全风险。

一、引言 在数字经济浪潮的席卷下，网络安全已成为企业稳健前行的关键支柱。员工作为企业网络活动的核心参与者，其网 […]

本文将分析漏洞原理、成因及影响，并提供修复建议，帮助开发者降低安全风险。

聚焦统筹大模型应用安全、大模型“幻觉”问题和破解网络安全行业困境。

CISA has added five more CVEs into its known exploited vulnerabilities catalog