Aggregator

RadiantCapital项目被攻击，共造成50M USD的损失。主要原因是 Radiant 的核心人员安全意识不足，导致攻击者构造虚假的前端骗取核心人员签名攻击交易。

Positive Technologies запустила проект с открытым кодом для проактивного обнаружения киберугроз.

A vulnerability, which was classified as critical, has been found in Adobe Acrobat Reader up to 11.0.17/15.006.30201/15.017.20053. This issue affects some unknown processing. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2016-6977. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Podcast Generator up to 1.0. It has been classified as critical. This affects an unknown part of the component Parser. The manipulation of the argument absoluteurl leads to code injection. This vulnerability is uniquely identified as CVE-2008-1124. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Group E 1.6.41 and classified as critical. This vulnerability affects unknown code in the library lib/head_auth.php. The manipulation of the argument CFG[PREPEND_FILE] leads to code injection. This vulnerability was named CVE-2008-1074. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in eazyPortal 1.0. Affected is an unknown function of the file index.php. The manipulation leads to sql injection. This vulnerability is traded as CVE-2008-1121. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Dream4 Koobi Pro 5.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php of the component Downloads Module. The manipulation of the argument categ leads to sql injection. This vulnerability is known as CVE-2008-1122. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in SiteBuilder SiteBuilder Elite 1.2 and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument CarpPath leads to code injection. This vulnerability is handled as CVE-2008-1123. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in WordPress Sniplets Plugin 1.1.2 and classified as problematic. This vulnerability affects unknown code of the file warning.php. The manipulation of the argument page leads to cross site scripting. This vulnerability was named CVE-2008-1061. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Mamboportal.com Simpleboard 1.0.3 Stable. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument catid leads to sql injection. This vulnerability is known as CVE-2008-1077. The attack can be launched remotely. Furthermore, there is an exploit available.

Секреты прошлого Красной планеты скрыты под тонким слоем льда.

A vulnerability, which was classified as critical, has been found in Internet Solutions Professionals Site Man. Affected by this issue is some unknown functionality of the file admin_login.asp of the component Login. The manipulation of the argument pass leads to sql injection. This vulnerability is handled as CVE-2006-1586. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to add further authentication.

你可能错过的新鲜事OPPO 召开 2024 年开发者大会10 月 17 日，OPPO 召开 2024 年开发者大会，正式发布了 ColorOS 15，引入了「一键问屏」功能等功能。据悉，「超级小布

特斯拉 Semi 电动卡车将在全球范围内上市；小米 SU7 汽车交付将在 11 月突破 10 万辆；台积电发布三季度财报：营收达到 235 亿美元创新高

31 миллион пользователей пострадали от кибератаки.

虚假中文版Telegram钓鱼样本详细分析

A vulnerability classified as critical was found in Adobe Acrobat Reader up to 11.0.17/15.006.30201/15.017.20053. This vulnerability affects unknown code. The manipulation leads to memory corruption. This vulnerability was named CVE-2016-6976. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.