Aggregator

A vulnerability classified as critical was found in LabRedesCefetRJ WeGIA up to 3.4.2. Affected by this vulnerability is an unknown functionality of the file /html/funcionario/profile_funcionario.php. The manipulation of the argument id_funcionario leads to sql injection. This vulnerability is known as CVE-2025-53529. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.x. It has been classified as problematic. This affects an unknown part of the component HTTP GET Request Handler. The manipulation of the argument errorstr leads to allocation of resources. This vulnerability is uniquely identified as CVE-2025-53530. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.2.x. It has been declared as problematic. This vulnerability affects unknown code of the component HTTP GET Request Handler. The manipulation of the argument fid leads to allocation of resources. This vulnerability was named CVE-2025-53531. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in GNU gnuboard5 5.5.16. This vulnerability affects unknown code of the file bbs/member_confirm.php. The manipulation leads to open redirect. This vulnerability was named CVE-2024-37658. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in GNU gnuboard5 5.5.16. It has been rated as problematic. This issue affects some unknown processing of the file bbs/logout.php of the component URL Parameter Handler. The manipulation leads to open redirect. The identification of this vulnerability is CVE-2024-37656. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in GNU gnuboard5 5.5.16. This affects an unknown part of the file thebbs/login.php. The manipulation leads to open redirect. This vulnerability is uniquely identified as CVE-2024-37657. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability has been found in LabRedesCefetRJ WeGIA up to 3.4.2 and classified as problematic. This vulnerability affects unknown code of the file novo_memorando.php. The manipulation leads to cross site scripting. This vulnerability was named CVE-2025-53526. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was suspected in YONO SBI 1.23.36. Further investigation has shown that this issues is a false-positive. Please review the sources mentioned and consider not using this entry at all.

文章介绍了一种新型点对点电子邮件系统Eppie，用户可通过本地设备生成加密公钥作为唯一地址，完全自主拥有且不受任何服务商控制。该系统支持传统邮件格式和去中心化网络通信，并可与Web2和Web3服务无缝衔接。

A vulnerability was found in Tamlyncreative Com Bfquiztrial. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument catid leads to sql injection. The identification of this vulnerability is CVE-2010-5032. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

EGIOZR异泽13合1桌面充电拓展坞整合数据传输、视频输出和充电功能，解决现代办公中接口不足、线材杂乱等问题。支持双屏异显、高速充电及多种设备连接，适合多屏办公党、差旅党等群体。

Citrix NetScaler 内存泄漏(CVE-2025-5777)

可信数据空间成为支撑全国一体化数据市场的核心基础设施。

AMD 正在警告一系列影响广泛芯片组的新漏洞，涉及的产品线极广。

当前环境出现异常状态，需完成验证后方可继续访问。

当前环境出现异常状态，需完成验证后才能继续访问相关内容或功能，并提供了验证入口。

已复现】契约锁电子签章系统 pdfverifier 远程代码执行漏洞契约锁

McHire нанимает всех… включая хакеров с логином 123456.

A critical arbitrary file deletion vulnerability has been discovered in the SureForms WordPress plugin, affecting over 200,000 active installations and potentially enabling unauthenticated attackers to achieve full site takeover. The flaw, tracked as CVE-2025-6691 with a CVSS score of 8.8 (High), resides in versions up to 1.7.3 of the plugin, which is developed by Brainstorm […]

The post Severe WordPress Plugin Flaw Puts 200,000 Sites at Risk of Full Takeover appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.