Aggregator

恭喜大家顺利结束初试~我们整理了一些初试之后大家需要知道的事情，希望能帮助到大家~

A vulnerability was found in Advanced Forum Signatures 2.0.4. It has been declared as critical. This vulnerability affects unknown code of the file signature.php. The manipulation of the argument afs_bar_right leads to sql injection. This vulnerability was named CVE-2011-5278. The attack can be initiated remotely. Furthermore, there is an exploit available.

苹果在 2022 年通过与 Google 的默认搜索引擎交易而获利 200 亿美元，这笔交易正是 Google 反垄断诉讼案的核心。Google 已经表态愿意暂停此类交易，而苹果对可能失去数百亿美元显然不是很开心，它试图帮助 Google 赢得诉讼，在递交到法庭的文件中表示它不会开发搜索引擎。苹果高级副总裁 Eddy Cue 在声明中称，创建一个搜索引擎需要投入大量资本和人力，而近期 AI 的快速发展意味着此类投资具有经济上的风险。他表示苹果缺乏搜索广告所需的专业人员和基础设施，而这对于创建一个经济上可行的搜索引擎是必不可少的。

Проблема затрагивает все версии программного обеспечения до свежего релиза

A vulnerability was found in NetApp OnCommand Workflow Automation up to 2.2.1/3.0 and classified as critical. Affected by this issue is some unknown functionality of the component Java Debugging Wire Protocol Service. The manipulation leads to code. This vulnerability is handled as CVE-2015-3292. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in code-projects Job Recruitment 1.0. It has been rated as critical. This issue affects the function cn_update of the file /_parse/_all_edits.php. The manipulation of the argument cname/url leads to sql injection. The identification of this vulnerability is CVE-2024-12966. The attack may be initiated remotely. Furthermore, there is an exploit available.

Российская разработка уменьшает размеры квантовых усилителей в сотни раз.

A vulnerability was found in code-projects Travel Management System 1.0. It has been classified as critical. This affects an unknown part of the file /detail.php. The manipulation of the argument pid leads to sql injection. This vulnerability is uniquely identified as CVE-2024-12948. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Threat Analysts have reported alarming findings about the “Araneida Scanner,” a malicious tool allegedly based on a cracked version of Acunetix, a renowned web application vulnerability scanner. The tool has been linked to illegal activities, including offensive reconnaissance, scraping user data, and identifying vulnerabilities for exploitation. The “Araneida Scanner” is being sold on platforms like […]

The post Araneida Scanner – Hackers Using Cracked Version Of Acunetix Vulnerability Scanner appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

近日，一起大规模的数据泄露事件震动了网络安全界。名为“HikkI-Chan”的黑客在臭名昭著的Breach Forums上泄露了超过3.9亿VK用户的个人信息。

The vacuum left by RedLine’s takedown will likely lead to a bump in the activity of other a infostealers