Why Users and Businesses Are Choosing to Get Paid in USDT Instead of Local Currency
Discover why USDT stablecoin payments are becoming popular worldwide. Learn the benefits, risks, and practical tips for using…
Aggregator
Microsoft изменила законы связи и провела интернет сквозь пустоту
1 month ago
Сигнал оторвался от стекла и вышел на рекордную скорость внутри… ничего.
CVE-2022-21673 | Grafana up to 7.5.12/8.3.3 Data Source information disclosure (GHSA-8wjh-59cw-9xh4 / Nessus ID 260721)
1 month ago
A vulnerability labeled as problematic has been found in Grafana up to 7.5.12/8.3.3. This affects an unknown function of the component Data Source Handler. The manipulation results in information disclosure.
This vulnerability is cataloged as CVE-2022-21673. The attack may be launched remotely. There is no exploit available.
The affected component should be upgraded.
vuldb.com
CVE-2022-31068 | GLPI up to 10.0.1 information disclosure (GHSA-g4hm-6vfr-q3wg / Nessus ID 260724)
1 month ago
A vulnerability was found in GLPI up to 10.0.1 and classified as problematic. This vulnerability affects unknown code. The manipulation results in information disclosure.
This vulnerability is known as CVE-2022-31068. It is possible to launch the attack remotely. No exploit is available.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2022-39370 | GLPI up to 10.0.3 Debug Panel install/update.php access control (GHSA-6c2p-wgx9-vrjc / Nessus ID 260722)
1 month ago
A vulnerability marked as critical has been reported in GLPI up to 10.0.3. Affected by this issue is some unknown functionality of the file install/update.php of the component Debug Panel. Performing manipulation results in improper access controls.
This vulnerability is known as CVE-2022-39370. Remote exploitation of the attack is possible. No exploit is available.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2022-39183 | SAML Auth Plugin on Moodle redirect (Nessus ID 260723)
1 month ago
A vulnerability was found in SAML Auth Plugin on Moodle and classified as problematic. This vulnerability affects unknown code. The manipulation results in open redirect.
This vulnerability is identified as CVE-2022-39183. The attack can be executed remotely. There is not any exploit available.
vuldb.com
Steam 每天增加 10 万新付费玩家
1 month ago
根据 Valve 的 Erik Peterson 在 devcom 2025 开发者大会上做的 Steam Platform Update 2025 报告,从 2024 年 8 月 1 日到 2025 年 8 月 1 日,Steam 每天增加 10.9 万新付费玩家——定义为首次在平台上购买游戏的用户。Steam 每天的在线玩家数峰值也从 2020 年的 2000 万增加到 4000 万以上;2020-2025 年之间增长最快的市场是日本、巴西、中国、德国和美国。中文如今是 Steam 的第一大语言,简体中文和繁体中文用户占用户总数的 35%,其次是英语 33%、俄语 8.4%、西班牙语 4.6%、巴西葡萄牙语 2.8%。对 Steam 平台最成功的付费游戏的分析显示,逾半数游戏定价低于 50 美元,近四分之一游戏定价低于 30 美元,这表明游戏无论价格如何都可以获得经济上的成功。2024 年 Steam 平台有逾 500 款游戏收入超过 400 万美元。
FTC announces settlement with toy robot makers that tracked location of children
1 month ago
Apitor collected data without informing parents or asking for permission, the FTC said, violating federal parental consent requirements.
The post FTC announces settlement with toy robot makers that tracked location of children appeared first on CyberScoop.
djohnson
New Stealthy Python Malware Leverages Discord to Steal Data From Windows Machines
1 month ago
A sophisticated new Python-based information stealer has emerged in the cybersecurity landscape, demonstrating advanced capabilities for data exfiltration through Discord channels. The malware, identified as “Inf0s3c Stealer,” represents a significant evolution in the realm of data theft tools, combining traditional system reconnaissance techniques with modern communication platforms to avoid detection while efficiently harvesting sensitive information […]
The post New Stealthy Python Malware Leverages Discord to Steal Data From Windows Machines appeared first on Cyber Security News.
Tushar Subhra Dutta
How Curated Data Unlocks the Full Potential of AIOps
1 month ago
The wrong data can be worse than no data at all. Across sectors, operations teams are dealing with an unprecedented volume of information from applications, networks, clouds, and security systems. For artificial intelligence for IT operations (AIOps) to deliver reliable results, that data must be refined and...
Anthony Cote
CVE-2025-53693 | Sitecore Experience Manager/Experience Platform up to 9.3/10.4 externally-controlled input to select classes or code (EUVD-2025-26500)
1 month ago
A vulnerability labeled as critical has been found in Sitecore Experience Manager and Experience Platform up to 9.3/10.4. This affects an unknown part. Such manipulation leads to use of externally-controlled input to select classes or code.
This vulnerability is documented as CVE-2025-53693. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2023-21479 | Samsung Devices 4.1.01.0 Horization Smart Suggestions improper authorization (EUVD-2023-25647)
1 month ago
A vulnerability marked as critical has been reported in Samsung Devices 4.1.01.0. Affected is an unknown function of the component Horization Smart Suggestions. The manipulation leads to improper authorization.
This vulnerability is uniquely identified as CVE-2023-21479. The attack is possible to be carried out remotely. No exploit exists.
Applying a patch is the recommended action to fix this issue.
vuldb.com
CVE-2023-21482 | Samsung Camera prior 11.1.02.18/12.1.03.8/13.1.01.4 Install Package authorization (EUVD-2023-25650)
1 month ago
A vulnerability classified as problematic has been found in Samsung Camera. Affected by this issue is some unknown functionality of the component Install Package Handler. This manipulation causes missing authorization.
The identification of this vulnerability is CVE-2023-21482. It is feasible to perform the attack on the physical device. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-53694 | Sitecore Experience Manager/Experience Platform up to 10.4 information disclosure (EUVD-2025-26501)
1 month ago
A vulnerability marked as problematic has been reported in Sitecore Experience Manager and Experience Platform up to 10.4. This vulnerability affects unknown code. Performing manipulation results in information disclosure.
This vulnerability is reported as CVE-2025-53694. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com
CVE-2025-47421 | Crestron TOUCHSCREENS x70 up to 3.001.0034.001 SCP Command argument injection (EUVD-2025-26506)
1 month ago
A vulnerability was found in Crestron TOUCHSCREENS x70 up to 3.001.0034.001 and classified as critical. Affected is an unknown function of the component SCP Command Handler. Executing manipulation can lead to argument injection.
The identification of this vulnerability is CVE-2025-47421. The physical device can be targeted for the attack. There is no exploit available.
vuldb.com
CVE-2023-21477 | Samsung Devices TIGERF Trustlet access of memory location after end of buffer (EUVD-2023-25645)
1 month ago
A vulnerability classified as critical was found in Samsung Devices. This affects an unknown part of the component TIGERF Trustlet. Such manipulation leads to access of memory location after end of buffer.
This vulnerability is referenced as CVE-2023-21477. The attack can only be performed from a local environment. No exploit is available.
Applying a patch is advised to resolve this issue.
vuldb.com
CVE-2025-9822 | Mautic up to 4.4.16/5.2.7/6.0.4 Configuration unverified ownership (GHSA-438m-6mhw-hq5w / EUVD-2025-26505)
1 month ago
A vulnerability was found in Mautic up to 4.4.16/5.2.7/6.0.4. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component Configuration Handler. The manipulation leads to unverified ownership.
This vulnerability is referenced as CVE-2025-9822. Remote exploitation of the attack is possible. No exploit is available.
Upgrading the affected component is recommended.
vuldb.com
SecWiki News 2025-09-03 Review
1 month ago
今日暂未更新资讯~
更多最新文章,请访问SecWiki
更多最新文章,请访问SecWiki
WorldLeaks
1 month ago
You must login to view this content
cohenido
CVE-2023-20922 | Google Android 11.0/12.0/13.0 PackageManagerService.java setMimeGroup resource consumption (A-237291548 / EUVD-2023-25090)
1 month ago
A vulnerability, which was classified as problematic, was found in Google Android 11.0/12.0/13.0. This affects the function setMimeGroup of the file PackageManagerService.java. The manipulation results in resource consumption.
This vulnerability is known as CVE-2023-20922. Attacking locally is a requirement. No exploit is available.
Applying a patch is advised to resolve this issue.
vuldb.com