Aggregator
How to overcome angular framework?
10 months 2 weeks ago
CVE-2024-50695 | SunGrow WiNet up to 200.001.00.P027 MQTT Message stack-based overflow
10 months 2 weeks ago
A vulnerability classified as critical has been found in SunGrow WiNet up to 200.001.00.P027. Affected is an unknown function of the component MQTT Message Handler. The manipulation leads to stack-based buffer overflow.
This vulnerability is traded as CVE-2024-50695. Access to the local network is required for this attack to succeed. There is no exploit available.
vuldb.com
CVE-2024-50697 | SunGrow WiNet up to 200.001.00.P027 MQTT Message stack-based overflow
10 months 2 weeks ago
A vulnerability was found in SunGrow WiNet up to 200.001.00.P027. It has been rated as critical. This issue affects some unknown processing of the component MQTT Message Handler. The manipulation leads to stack-based buffer overflow.
The identification of this vulnerability is CVE-2024-50697. Access to the local network is required for this attack. There is no exploit available.
vuldb.com
CVE-2024-50690 | SunGrow WiNet up to 200.001.00.P027 Firmware Update hard-coded password
10 months 2 weeks ago
A vulnerability was found in SunGrow WiNet up to 200.001.00.P027. It has been declared as problematic. This vulnerability affects unknown code of the component Firmware Update Handler. The manipulation leads to use of hard-coded password.
This vulnerability was named CVE-2024-50690. The attack needs to be initiated within the local network. There is no exploit available.
vuldb.com
CVE-2024-13709 | linearoy Linear Plugin up to 2.8.1 on WordPress cross-site request forgery
10 months 2 weeks ago
A vulnerability was found in linearoy Linear Plugin up to 2.8.1 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery.
This vulnerability is uniquely identified as CVE-2024-13709. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-50694 | SunGrow WiNet up to 200.001.00.P027 MQTT Message stack-based overflow
10 months 2 weeks ago
A vulnerability was found in SunGrow WiNet up to 200.001.00.P027 and classified as critical. Affected by this issue is some unknown functionality of the component MQTT Message Handler. The manipulation leads to stack-based buffer overflow.
This vulnerability is handled as CVE-2024-50694. The attack can only be initiated within the local network. There is no exploit available.
vuldb.com
CVE-2024-50698 | SunGrow WiNet up to 200.001.00.P027 MQTT Message Content heap-based overflow
10 months 2 weeks ago
A vulnerability has been found in SunGrow WiNet up to 200.001.00.P027 and classified as critical. Affected by this vulnerability is an unknown functionality of the component MQTT Message Content Handler. The manipulation leads to heap-based buffer overflow.
This vulnerability is known as CVE-2024-50698. The attack can only be done within the local network. There is no exploit available.
vuldb.com
CVE-2024-50692 | SunGrow WiNet up to 200.001.00.P027 MQTT Credential channel accessible
10 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in SunGrow WiNet up to 200.001.00.P027. Affected is an unknown function of the component MQTT Credential Handler. The manipulation leads to channel accessible by non-endpoint.
This vulnerability is traded as CVE-2024-50692. The attack needs to be approached within the local network. There is no exploit available.
vuldb.com
CVE-2025-24361 | Nuxt up to 3.15.2 on Vue routine (GHSA-4gf7-ff8x-hq99)
10 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Nuxt up to 3.15.2 on Vue. This issue affects some unknown processing. The manipulation leads to exposed dangerous routine.
The identification of this vulnerability is CVE-2025-24361. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-24360 | Nuxt up to 3.15.2 on Vue information disclosure (GHSA-2452-6xj8-jh47)
10 months 2 weeks ago
A vulnerability classified as problematic was found in Nuxt up to 3.15.2 on Vue. This vulnerability affects unknown code. The manipulation leads to information disclosure.
This vulnerability was named CVE-2025-24360. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-0357 | Iqonic Design WPBookit Plugin up to 1.6.9 on WordPress handle_image_upload unrestricted upload
10 months 2 weeks ago
A vulnerability classified as critical has been found in Iqonic Design WPBookit Plugin up to 1.6.9 on WordPress. This affects the function WPB_Profile_controller::handle_image_upload. The manipulation leads to unrestricted upload.
This vulnerability is uniquely identified as CVE-2025-0357. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
4 - CVE-2024-23924
10 months 2 weeks ago
Currently trending CVE - hypeScore: 2 - Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Alpine Halo9 devices. Authentication is not required to exploit this vulner
10 - CVE-2025-24104
10 months 2 weeks ago
Currently trending CVE - hypeScore: 1
从Pegasus到Predator:iOS商业间谍软件的演进
10 months 2 weeks ago
移动间谍软件的演变
从Pegasus到Predator:iOS商业间谍软件的演进
10 months 2 weeks ago
移动间谍软件的演变
从Pegasus到Predator:iOS商业间谍软件的演进
10 months 2 weeks ago
本文基于iVerify研究团队负责人在著名黑客会议38c3上演讲内容整理而成。演讲人介绍各位尊敬的来宾,请允许我介绍Matthias Freelingsdorf先生。他现任iVerify研究团队负责人
网络安全的红利还能吃几年?
10 months 2 weeks ago
本文摘录洞源实验室对知乎同名问题的回答,文章有部分修订。
网络安全的红利还能吃几年?
10 months 2 weeks ago
本文摘录洞源实验室对知乎同名问题的回答:https://www.zhihu.com/question/585302956/answer/83308301075网络安全的红利的本质上是供需平衡的倾斜,当
智能化软件开发微访谈·第三十六期 具身智能系统:从逻辑程序到神经网络·活动预告
10 months 2 weeks ago
将于1月26日(周一)下午3:30在“智能化软件工程沙龙”微信群举行