Aggregator

本题只有3支战队成功提交flag

美国太空军的神秘轨道飞行器 X-37B 将测试量子惯性传感器。传统的 GPS 导航在很多条件下会无法使用，比如外太空和水下，在地面上也容易受到干扰或欺骗或根本无法使用（如战争中）。量子惯性传感器可能彻底改变飞行器、飞机、舰船和潜艇在 GPS 无法使用环境中导航的方式。在绝对零度附近，原子的行为类似于波，会同时存在于多种状态，这两个特性是量子惯性传感器的核心。相比传统惯性传感器，量子惯性传感器的灵敏度高出几个数量级，无需外部参考即可实现长时间高精度导航。

A vulnerability, which was classified as problematic, was found in 1000projects Online Project Report Submission and Evaluation System 1.0. This affects an unknown function of the file /admin/edit_title.php?id=1. Executing manipulation of the argument desc can lead to cross site scripting. The identification of this vulnerability is CVE-2025-9434. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, has been found in mtons mblog up to 3.5.0. The impacted element is an unknown function of the file /admin/user/list of the component Admin Panel. Performing manipulation of the argument Name results in cross site scripting. This vulnerability was named CVE-2025-9433. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability classified as problematic was found in mtons mblog up to 3.5.0. The affected element is an unknown function of the file /admin/post/list of the component Admin Panel. Such manipulation of the argument Title leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-9432. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability classified as problematic has been found in mtons mblog up to 3.5.0. Impacted is an unknown function of the file /search. This manipulation of the argument kw causes cross site scripting. This vulnerability is handled as CVE-2025-9431. The attack can be initiated remotely. Additionally, an exploit exists.

A vulnerability described as problematic has been identified in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /admin/options/update. The manipulation of the argument input results in cross site scripting. This vulnerability is known as CVE-2025-9430. It is possible to launch the attack remotely. Furthermore, an exploit is available.

Submit #634184 / VDB-321275

89 million Steam accounts breached! Learn how to secure your account and protect your data. Act now to safeguard your gaming identity.

The post 89 Million Steam Accounts Compromised: Change Your Password Now appeared first on Security Boulevard.

一、总结摘要「熵」——热力学第二定律的混沌量度 ，在物理宇宙中刻画着系统从有序走向无序的必然。当我们将这一

A vulnerability marked as problematic has been reported in mtons mblog up to 3.5.0. This vulnerability affects unknown code of the file /post/submit of the component Post Handler. The manipulation of the argument content/title/ leads to cross site scripting. This vulnerability is traded as CVE-2025-9429. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A federal court has handed down a four-year prison term to a former software developer who sabotaged his employer’s global network with a custom “kill switch,” crippling operations and inflicting hundreds of thousands in losses. Davis Lu, 55, a Chinese national legally residing and working in Houston, was sentenced on August 21 by U.S. District […]

The post Chinese Hacker Sentenced for Kill Switch Attack on Ohio Firm’s Global Network appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #634169 / VDB-321274

Submit #634158 / VDB-321273

Submit #634157 / VDB-321272

Submit #634156 / VDB-321271

As part of the ongoing analysis of the KorPlug malware family, this second installment focuses on the complex second-stage payload, expanding on earlier discoveries of DLL side-loading methods that use legitimate programs to execute code initially. The payload, a malicious DLL with SHA-256 hash b6b239fe0974cf09fe8ee9bc5d0502174836a79c53adccdbb1adeb1f15c6845c, measures 638,976 bytes (624 KB) and is structured as an […]

The post Unmasking KorPlug Malware: TTPs, Control Flow, and Exposed IOCs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #634155 / VDB-321270

Submit #634153 / VDB-321270

A vulnerability has been found in OpenLDAP up to 2.4.56 and classified as problematic. Affected is an unknown function. Performing manipulation results in out-of-bounds read. This vulnerability is reported as CVE-2020-36223. The attacker must have access to the local network to execute the attack. No exploit exists. The affected component should be upgraded.