Aggregator

文章介绍了HTTP基础知识及其在网络攻击中的应用，通过GET请求示例讲解了HTTP请求的基本结构和参数使用方法。

研究人员发现一个未更新4年的npm包仍被17,000个项目使用，存在严重漏洞可能导致远程代码执行。现代开发中过度依赖开源组件，许多看似维护的包实际已废弃且存有安全隐患。

一位开发者在审计客户网站时发现一个未更新四年的npm包仍在17,000个项目中使用，该包存在严重漏洞可能导致大规模远程代码执行。文章揭示了现代开发生态系统中开源依赖的安全隐患：许多看似“受维护”的包实际上已被废弃且仍存在关键漏洞。

文章描述了通过nmap扫描发现HTTP服务后, 使用Netcat连接并植入反向shell以获取初始访问权限. 随后通过查找邮件和.git仓库获取用户凭证, 并SSH登录. 接着利用Python脚本暴力破解admin密码, 最终获得root权限.

A vulnerability has been found in Cisco Small Business RV016, Small Business RV042, Small Business RV042G, Small Business RV082, Small Business R320 and Small Business RV325 and classified as problematic. Affected by this issue is some unknown functionality of the component Web-based Management Interface. Performing manipulation results in cross site scripting. This vulnerability is cataloged as CVE-2023-20143. It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability, which was classified as problematic, was found in Cisco Small Business RV016, Small Business RV042, Small Business RV042G, Small Business RV082, Small Business R320 and Small Business RV325. Affected by this vulnerability is an unknown functionality of the component Web-based Management Interface. Such manipulation leads to cross site scripting. This vulnerability is listed as CVE-2023-20142. The attack may be performed from a remote location. There is no available exploit. You should upgrade the affected component.

多款密码管理器被发现存在点击劫持漏洞，可能导致用户敏感信息泄露。研究人员建议禁用自动填充功能或使用独立2FA验证工具以提高安全性，但会影响便利性。

A vulnerability classified as problematic has been found in QEMU. Affected is the function uefi_vars_write of the file hw/uefi/var-service-core.c of the component uefi. Performing manipulation results in information disclosure. This vulnerability was named CVE-2025-8860. The attack needs to be approached within the local network. There is no available exploit. To fix this issue, it is recommended to deploy a patch.

A vulnerability described as critical has been identified in Custom Query Shortcode Plugin up to 0.4.0 on WordPress. This impacts an unknown function. Such manipulation of the argument lens leads to path traversal. This vulnerability is uniquely identified as CVE-2025-8562. The attack can be launched remotely. No exploit exists.

Satellites play a huge role in our daily lives, supporting everything from global communications to navigation, business, and national security. As space becomes more crowded and commercial satellite use grows, these systems are facing new cyber threats. The challenge is even greater because many satellites still in service were designed decades ago, at a time when cybersecurity wasn’t a focus, which leaves them with limited defenses. In this Help Net Security interview, Brett Loubert, leader … More →

The post Why satellite cybersecurity threats matter to everyone appeared first on Help Net Security.

美国卫生部长小肯尼迪要求撤回一篇关于疫苗铝化合物的研究论文。该研究显示铝化合物未显著增加儿童患自身免疫、过敏或神经发育障碍的风险。小肯尼迪质疑结论，而疫苗怀疑论者曾声称铝与自闭症有关。期刊拒绝撤稿，专家指出此举不寻常。

反疫苗的美国卫生部长小肯尼迪（Robert F. Kennedy Jr）要求《Annals of Internal Medicine》期刊撤回丹麦研究人员发表的一篇论文《Aluminum-Adsorbed Vaccines and Chronic Diseases in Childhood: A Nationwide Cohort Study》，对丹麦过去逾 20年来出生的 120 万名儿童的分析发现，疫苗中的铝化合物并不显著增加罹患自身免疫性、过敏性或神经发育障碍的风险。小肯尼迪对研究结论提出了质疑。疫苗怀疑论者曾宣称铝化合物 与自闭症等儿童疾病发病率上升有关，而 WHO 等机构早就驳斥过此类观点。以盐形式存在的铝广泛用于疫苗，没有证据表明疫苗中少量的铝会引起严重的副作用。对于小肯尼迪的要求，期刊表示无意撤稿。Retraction Watch 联合创始人 Ivan Oransky 指出，公共卫生官员很少要求撤稿，小肯尼迪此举是想要科学期刊屈服于他的意志。

Под видом reCAPTCHA новый ClickFix загоняет PowerShell-команды прямо в буфер обмена.

A vulnerability, which was classified as problematic, has been found in Cisco Small Business RV016, Small Business RV042, Small Business RV042G, Small Business RV082, Small Business R320 and Small Business RV325. Affected is an unknown function of the component Web-based Management Interface. This manipulation causes cross site scripting. This vulnerability is tracked as CVE-2023-20141. The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.

Salesforce has addressed multiple critical security vulnerabilities in Tableau Server and Desktop that could enable attackers to upload malicious files and execute arbitrary code. The vulnerabilities, disclosed on August 22, 2025, were proactively identified during a security assessment and patched in the July 22, 2025 maintenance release. Critical Type Confusion Vulnerability The most severe flaw, CVE-2025-26496, […]

The post Critical Tableau Server Flaws Allows Malicious File Uploads appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Kopia is an open-source backup and restore tool that lets you create encrypted snapshots of your files and store them in cloud storage, on a remote server, on network-attached storage, or on your own computer. It doesn’t create a full image of your machine. Instead, you pick the files and folders you want to back up or restore. Kopia using Google Cloud Storage with pluggable encryption and compression Kopia comes with both a command-line interface … More →

The post Kopia: Open-source encrypted backup tool for Windows, macOS, Linux appeared first on Help Net Security.

AMD 9800X3D 处理器与华擎主板搭配使用时出现烧毁问题，部分用户报告 CPU 插槽物理损坏。AMD 指出主板制造商未遵循 BIOS 推荐值导致故障，并强调问题复杂性。华擎最初认为是内存兼容性问题，后通过 BIOS 更新解决。此前英特尔也因类似 BIOS 修改引发处理器损坏问题。

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2025-08-25, 39 days ago. The vendor is given until 2025-12-23 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2025-08-25, 39 days ago. The vendor is given until 2025-12-23 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.