Aggregator

A vulnerability was found in Verodin Director up to 3.5.3.1 and classified as problematic. This issue affects some unknown processing of the file /integrations.json of the component JSON REST API. The manipulation as part of API Request leads to insufficiently protected credentials (Credentials). The identification of this vulnerability is CVE-2019-10716. The attack may be initiated remotely. Furthermore, there is an exploit available.

精细运营，烛鉴前行，验证护航

12月23日（下周一）下午 14 点，我们将举行一次线上+线下同步的发布会。要点如下：离朱-安全验证新场景，看看市场上安全验证场景发展的怎么样了。安全有效性验证能力白皮书发布，看看金融，运营商，能源，

轻快标图(LiteMark)是什么轻快标图(LiteMark)是一款轻量级的图片标注工具，旨在提供便捷、美观的用户体验。它拥有丰富的标注工具，包括贴图、放大镜、文字、

轻快标图(LiteMark)是什么轻快标图(LiteMark)是一款轻量级的图片标注工具，旨在提供便捷、美观的用户体验。它拥有丰富的标注工具，包括贴图、放大镜、文字、指示、消息框和马赛克等十几种...

小红书笔记生成器 (XHS Note Generator)是什么小红书笔记生成器(XHS Note Generator)是一款利用人工智能技术的小红书辅助工具，它的主要功能是将视频内容一键转换为...

小红书笔记生成器 (XHS Note Generator)是什么小红书笔记生成器(XHS Note Generator)是一款利用人工智能技术的小红书辅助工具，它的主

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert, adding two significant vulnerabilities to its Known Exploited Vulnerabilities Catalog. These vulnerabilities, actively exploited by malicious actors, underscore the growing risks facing organizations. Adobe ColdFusion Access Control Weakness (CVE-2024-20767) One of the newly added vulnerabilities, CVE-2024-20767, affects Adobe ColdFusion due to improper access […]

The post CISA Warns of Adobe & Windows Kernel Driver Vulnerabilities Exploited in Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

企业资讯

中国国家网络与信息安全信息通报中心持续发现一批境外恶意网址和恶意IP，有多个具有某大国政府背景的境外黑客组织，利用这些网址和IP持续对中国和其他国家发起网络攻击。这些恶意网址和IP都与特定木马程序或木

浏览器隔离是一种日益流行的安全技术，它通过云环境或虚拟机中托管的远程 Web 浏览器路由所有本地 Web 浏览器请求，所访问网页上的任何脚本或内容都在远程浏览器而不是本地浏览器上执行。然后，页面的渲染

国家网络与信息安全信息通报中心持续发现一批境外恶意网址和恶意IP。

其研究没有考虑额外的安全措施，例如域名信誉、URL 扫描、数据丢失防护和请求启发式，这些措施在某些情况下可能会阻止这种攻击或使其无效。

Проникновение в систему оставалось нераскрытым целых два месяца.

A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'kimiya' was reported to the affected vendor on: 2024-12-17, 77 days ago. The vendor is given until 2025-04-16 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A vulnerability, which was classified as problematic, has been found in IBM Maximo 4.1/5.2. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2008-3161. The attack may be initiated remotely. Furthermore, there is an exploit available.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The list of flaws is below - CVE-2024-20767 (CVSS score: 7.4) - Adobe ColdFusion contains an improper access control vulnerability that could allow an attacker to access or modify restricted

Network Security / IoT SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on