Aggregator

A vulnerability classified as critical has been found in Mario Valdez Content Management System 0.6.1. This affects an unknown part. The manipulation of the argument cm_imgpath leads to path traversal. This vulnerability is uniquely identified as CVE-2008-2217. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in PD9 MegaBBS 2.2. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation of the argument attachmentid leads to sql injection. This vulnerability is handled as CVE-2008-2023. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Berkeley Pmake 2.1.33. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation of the argument check leads to format string. This vulnerability is handled as CVE-2001-0915. Local access is required to approach this attack. Furthermore, there is an exploit available.

在四起车祸其中包括一次致命车祸之后，汽车安全监管机构美国国家公路交通安全管理局(NHTSA)开始调查特斯拉的 Full Self-Driving（FSD）软件。Full Self-Driving 并不是其名字意义上的全自动驾驶软件，它仍然是辅助驾驶软件，且其在功能上受限于使用的硬件（它主要依赖于摄像头而没有使用激光雷达等其它传感器）。NHTSA 表示，四起车祸中 FSD 都启用了，事故发生时天气处于太阳眩光、雾或灰尘等低能见度状况下。2023 年 11 月，亚利桑那州 Rimrock 市的一名行人在被一辆 2021 年型号的特斯拉 Model Y 撞倒后死亡。另一起正在调查的车祸据报发生了受伤状况。

随着移动互联网的发展，线上认证手段趋向多元化并正在向更便捷、更安全的方向迭代。

On October 8, 2024, Geoffrey Hinton was awarded the Nobel Prize in Physics, along with John J. Hopfi

A vulnerability classified as critical was found in Intel High-bandwidth Digital Content Protection 1.0. Affected by this vulnerability is an unknown functionality of the component Linear Key Exchange Handler. The manipulation leads to cleartext storage of sensitive information. This vulnerability is known as CVE-2001-0903. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in PHPizabi 0.848b. This affects the function assignuser of the file template.class.php. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2008-2018. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in PD9 MegaBBS 2.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file send-private-message.asp. The manipulation of the argument redirect leads to cross site scripting. This vulnerability is known as CVE-2008-2022. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Aspindir Angelo-Emlak 1.0 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument sayfa leads to cross site scripting. This vulnerability is handled as CVE-2008-2048. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in RunCMS Myarticles Module 0.6. This affects an unknown part of the file topics.php. The manipulation of the argument topic_id leads to sql injection. This vulnerability is uniquely identified as CVE-2008-2084. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Phpforge PHP Forge 3.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument id leads to sql injection. This vulnerability is known as CVE-2008-2088. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Aspindir Angelo-Emlak 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument id leads to sql injection. This vulnerability is known as CVE-2008-2047. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Opera Web Browser up to 6.0. Affected is an unknown function of the component Javascript. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-2001-0898. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

新闻速览 •两家企业官宣重要收购计划，新一轮全球数据安全市场整合加速 •微软安全发生重大技术性事故，把客户近一 […]

工具往往可以决定网络安全渗透测试或红队演练活动的成败。虽然Kali中的许多工具都已经过验证且稳定可靠，但并不能 […]

A vulnerability has been found in Openunix and UnixWare and classified as problematic. This vulnerability affects unknown code of the component PPP Utilities. The manipulation leads to memory corruption. This vulnerability was named CVE-2001-0858. An attack has to be approached locally. There is no exploit available.

Name: Hackceler8 2024 (an Google Capture The Flag event.)
Date: Oct. 18, 2024, midnight — 20 Oct. 2024, 23:00 UTC  [add to calendar]
Format: Hack quest
On-site
Location: Málaga, Spain
Offical URL: https://capturetheflag.withgoogle.com/hackceler8
Rating weight: 0.00
Event organizers: Google CTF

Name: Hack.lu CTF 2024 (an Hack.lu CTF event.)
Date: Oct. 18, 2024, 6 p.m. — 20 Oct. 2024, 18:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://flu.xxx/
Rating weight: 100.00
Event organizers: FluxFingers

在国际数据公司（IDC）最新发布的《中国安全访问服务边缘技术评估，2024》（Doc# CHC52587524 […]