Aggregator

A vulnerability was found in Adobe Flash Player up to 24.0.0.194. It has been classified as critical. This affects an unknown part. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2017-2988. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Alt-N MDaemon 3.1.1 and classified as critical. This vulnerability affects unknown code of the component WebConfig. The manipulation as part of URL leads to memory corruption. This vulnerability was named CVE-2000-1021. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Шпионское ПО атаковало 90 человек.

A vulnerability classified as critical has been found in Ktools.net PhotoStore up to 4.7.4. Affected is an unknown function of the file mgr.login.php. The manipulation of the argument email leads to sql injection. This vulnerability is traded as CVE-2016-4337. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Voxel CBMS 0.7. It has been classified as critical. This affects an unknown part of the file dltclnt.php. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2002-0961. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Adobe Flash Player up to 25.0.0.127. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Shape Outline Parser. The manipulation leads to memory corruption. This vulnerability is known as CVE-2017-3064. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in SeaWell Networks Spectrum SDC 02.05.00. Affected by this vulnerability is an unknown functionality of the component Viewer. The manipulation leads to improper access controls. This vulnerability is known as CVE-2015-8284. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in wordplus Better Messages Plugin up to 2.6.9 on WordPress and classified as problematic. This vulnerability affects the function better_messages_live_chat_button of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-13612. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in vanquish WooCommerce Support Ticket System Plugin up to 17.8 on WordPress. This affects the function ajax_delete_message/ajax_get_customers_partial_list/ajax_get_admins_list. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2024-13775. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability has been found in Joomla CMS up to 3.6.3 and classified as critical. This vulnerability affects unknown code of the component User Registration. The manipulation leads to improper input validation. This vulnerability was named CVE-2016-8870. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

OpenAI 公司的 CEO Sam Altman、首席研究官 Mark Chen、首席产品官 Kevin Weil、工程副总裁 Srinivas Narayanan、AI 研究负责人 Michelle Pokrass 以及研究主管 Hongyu Ren 周五参加了 Reddit 的 AMA 活动。最近火热无比的中国 AI 创业公司 DeepSeek 给 OpenAI 带来了巨大压力。Altman 承认 DeepSeek 削弱了 OpenAI 在 AI 领域的领先地位，他还认为 OpenAI 在开源其技术上“站在了历史错误的一边”。OpenAI 曾开源过模型，但最近几年倾向于私有的闭源开发方法。Altman 称该公司需要找出一种不同的开源策略，他同时强调不是所有人都认同这一观点，开源也不是目前的最优先事项。Kevin Weil 在后续回复中表示，OpenAI 在考虑开源不再先进的旧模型。他没有透露更多信息。

A vulnerability, which was classified as critical, was found in Web Reference Database up to 0.9.6. Affected is an unknown function of the file install.php. The manipulation of the argument pathToMYSQL/databaseStructureFile leads to code injection. This vulnerability is traded as CVE-2015-7381. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in BoutikOne 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file list.php. The manipulation of the argument page leads to sql injection. This vulnerability is known as CVE-2010-3479. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Apache Tomcat 4.1.24. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2007-3382. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

NASA OSIRIS-REx 探测器于 2020 年 10 月登陆距地球 3.2 亿公里的小行星 Bennu，收集了 120 克尘埃与岩石样本，2023 年 9 月样本舱降落在犹他州沙漠。对样本的分析发现了盐类矿物如岩盐（halite）与钾石盐（sylvite），以及有机化合物与构成生命的物质，包括 14 种与地球生物过程相关的胺基酸，以及某些未在已知生物体中发现的胺基酸。此外还检测到氨（ammonia）及全部 5 种 RNA 与 DN A中的核碱基。虽然目前未发现生命，但这些结果表明，小行星母天体曾拥有富含碳与盐水的环境，以及适合形成生命的基本条件。