微步在线获任香港警务处网络安全特别行动小组成员
守护香港数字空间安全与关键基础设施稳定
Aggregator
The Forensic Backfire: How Hackers Weaponized a Legacy EnCase Driver to Decapitate Modern EDR
4 months 3 weeks ago
Adversaries are increasingly inaugurating their offensives not with conventional malware, but by subverting legitimate remote access credentials. A
The post The Forensic Backfire: How Hackers Weaponized a Legacy EnCase Driver to Decapitate Modern EDR appeared first on Penetration Testing Tools.
ddos
New CentOS 9 Vulnerability Lets Attackers Escalate to Root Privileges – PoC Released
4 months 3 weeks ago
A critical use-after-free (UAF) vulnerability in the Linux kernel’s sch_cake queuing discipline (Qdisc) affects CentOS 9, allowing local users to gain root privileges. Security firm SSD Secure Disclosure published details on February 5, 2026, noting the flaw won first place in the Linux category at TyphoonPWN 2025. The issue arises in the cake_enqueue function of […]
The post New CentOS 9 Vulnerability Lets Attackers Escalate to Root Privileges – PoC Released appeared first on Cyber Security News.
Guru Baran
The Silent Pivot: Global SystemBC Botnet Ensnares 10,000+ IPs, Including Government Portals
4 months 3 weeks ago
Security specialists at Silent Push have unearthed a pervasive wave of SystemBC infections, a malware strain that surreptitiously
The post The Silent Pivot: Global SystemBC Botnet Ensnares 10,000+ IPs, Including Government Portals appeared first on Penetration Testing Tools.
ddos
The Invisible Proxy: How Hackers Are Weaponizing NGINX and Baota Panels to Hijack Web Traffic
4 months 3 weeks ago
Security analysts at Datadog have unmasked an ongoing traffic interception campaign targeting NGINX servers and hosting management interfaces,
The post The Invisible Proxy: How Hackers Are Weaponizing NGINX and Baota Panels to Hijack Web Traffic appeared first on Penetration Testing Tools.
ddos
Blinding the Watchmen: How “GhostLocker” Weaponizes Windows AppLocker to Paralyze EDR
4 months 3 weeks ago
A critical subversion of the Windows application control mechanism has been unearthed, involving the exploitation of AppLocker configurations
The post Blinding the Watchmen: How “GhostLocker” Weaponizes Windows AppLocker to Paralyze EDR appeared first on Penetration Testing Tools.
ddos
Shadows Vanish: The “Global Man” Exit Scam Leaves Malware Operators in the Dark
4 months 3 weeks ago
In the clandestine digital underworld, a prominent purveyor of code-signing certificates has executed a high-profile disappearance. The Global
The post Shadows Vanish: The “Global Man” Exit Scam Leaves Malware Operators in the Dark appeared first on Penetration Testing Tools.
ddos
CVE-2026-20980 | Samsung Devices PACM input validation (CNNVD-202602-751)
4 months 3 weeks ago
A vulnerability has been found in Samsung Devices and classified as critical. Affected by this issue is some unknown functionality of the component PACM. Performing a manipulation results in improper input validation.
This vulnerability is known as CVE-2026-20980. The attack may be carried out on the physical device. No exploit is available.
vuldb.com
CVE-2026-20978 | Samsung Devices KnoxGuardManager privileges management (CNNVD-202602-753)
4 months 3 weeks ago
A vulnerability classified as critical was found in Samsung Devices. This impacts an unknown function of the component KnoxGuardManager. The manipulation results in improper privilege management.
This vulnerability is reported as CVE-2026-20978. The attack requires a local approach. No exploit exists.
vuldb.com
CVE-2026-20979 | Samsung Devices Settings privileges management (CNNVD-202602-752)
4 months 3 weeks ago
A vulnerability, which was classified as critical, was found in Samsung Devices. Affected by this vulnerability is an unknown functionality of the component Settings. Such manipulation leads to improper privilege management.
This vulnerability is traded as CVE-2026-20979. An attack has to be approached locally. There is no exploit available.
vuldb.com
CVE-2026-20977 | Samsung Devices Emergency Sharing access control (CNNVD-202602-754)
4 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in Samsung Devices. Affected is an unknown function of the component Emergency Sharing. This manipulation causes improper access controls.
This vulnerability appears as CVE-2026-20977. The attack requires local access. There is no available exploit.
vuldb.com
CVE-2026-1756 | WP FOFT Loader Plugin up to 2.1.39 on WordPress file_and_ext unrestricted upload (CNNVD-202602-755)
4 months 3 weeks ago
A vulnerability identified as critical has been detected in WP FOFT Loader Plugin up to 2.1.39 on WordPress. Affected by this vulnerability is the function WP_FOFT_Loader_Mimes::file_and_ext. Performing a manipulation results in unrestricted upload.
This vulnerability is reported as CVE-2026-1756. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com
CVE-2025-29867 | Hancom Office DOC File Parser type confusion (CNNVD-202602-756)
4 months 3 weeks ago
A vulnerability labeled as critical has been found in Hancom Office. This vulnerability affects unknown code of the component DOC File Parser. Such manipulation leads to type confusion.
This vulnerability is documented as CVE-2025-29867. The attack can be executed remotely. There is not any exploit available.
vuldb.com
爱泼斯坦无码邮件原文第三批:它个人gmail邮箱10封邮件
4 months 3 weeks ago
由于[email protected]是他用来在社交网站注册账号用的邮箱,大多只是通知邮件,所以,只放Jeffrey Epstein 的内容
Anubis
4 months 3 weeks ago
You must login to view this content
cohenido
DragonForce
4 months 3 weeks ago
You must login to view this content
cohenido
CVE-2026-24348 | EZCast Pro II 1.17478.146 Admin UI cross site scripting (ntcf-2025-145332)
4 months 3 weeks ago
A vulnerability has been found in EZCast Pro II 1.17478.146 and classified as problematic. The affected element is an unknown function of the component Admin UI. Performing a manipulation results in cross site scripting.
This vulnerability is known as CVE-2026-24348. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com
CVE-2026-1532 | D-Link DCS-700L 1.03.09 Music File Upload Service /setUploadMusic uploadmusic path traversal (EUVD-2026-4849)
4 months 3 weeks ago
A vulnerability was found in D-Link DCS-700L 1.03.09. It has been rated as critical. The affected element is the function uploadmusic of the file /setUploadMusic of the component Music File Upload Service. The manipulation of the argument UploadMusic leads to path traversal. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is uniquely identified as CVE-2026-1532. The attack can only be initiated within the local network. Moreover, an exploit is present.
vuldb.com
CVE-2025-36442 | IBM DB2/DB2 Connect Server up to 11.5.9/12.1.3 XML Column data query logic injection (EUVD-2025-206567 / Nessus ID 297628)
4 months 3 weeks ago
A vulnerability marked as problematic has been reported in IBM DB2 and DB2 Connect Server up to 11.5.9/12.1.3. Affected is an unknown function of the component XML Column Handler. The manipulation leads to improper neutralization of special elements in data query logic.
This vulnerability is traded as CVE-2025-36442. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2025-36070 | IBM DB2/DB2 Connect Server up to 11.5.9/12.1.3 Table allocation of resources (EUVD-2025-206553)
4 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in IBM DB2 and DB2 Connect Server up to 11.5.9/12.1.3. This vulnerability affects unknown code of the component Table Handler. Performing a manipulation results in allocation of resources.
This vulnerability was named CVE-2025-36070. The attack may be initiated remotely. There is no available exploit.
It is advisable to upgrade the affected component.
vuldb.com