Aggregator

CVE-2008-4547 | Dvrstation Dvrstation Cms 1.0.1.25 ActiveX Control pdvratl.dll second memory corruption (EDB-4903 / XFDB-39640)

1 year 5 months ago

A vulnerability has been found in Dvrstation Dvrstation Cms 1.0.1.25 and classified as very critical. Affected by this vulnerability is an unknown functionality in the library pdvratl.dll of the component ActiveX Control. The manipulation of the argument second leads to memory corruption. This vulnerability is known as CVE-2008-4547. The attack can be launched remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2008-0254 | Wavelink Media TutorialCMS 1.02 activate.php userName sql injection (EDB-4901 / XFDB-39642)

Vuldb Updates

1 year 5 months ago

A vulnerability was found in Wavelink Media TutorialCMS 1.02. It has been declared as critical. This vulnerability affects unknown code of the file activate.php. The manipulation of the argument userName leads to sql injection. This vulnerability was named CVE-2008-0254. The attack can be initiated remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2008-0256 | Matteo Binda ASP Photo Gallery 1.0 imgbig.asp ricerca sql injection (EDB-4900 / XFDB-39646)

Vuldb Updates

1 year 5 months ago

A vulnerability classified as critical has been found in Matteo Binda ASP Photo Gallery 1.0. Affected is an unknown function of the file imgbig.asp. The manipulation of the argument ricerca leads to sql injection. This vulnerability is traded as CVE-2008-0256. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2008-0259 | Minimal Design minimal Gallery 0.8 path traversal (EDB-4902 / XFDB-39649)

Vuldb Updates

1 year 5 months ago

A vulnerability, which was classified as critical, was found in Minimal Design minimal Gallery 0.8. This affects an unknown part. The manipulation leads to path traversal. This vulnerability is uniquely identified as CVE-2008-0259. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2008-0260 | Minimal Design minimal Gallery 0.8 php_info.php phpinfo input validation (EDB-4902 / SA28391)

Vuldb Updates

1 year 5 months ago

A vulnerability has been found in Minimal Design minimal Gallery 0.8 and classified as critical. This vulnerability affects the function phpinfo of the file php_info.php. The manipulation leads to improper input validation. This vulnerability was named CVE-2008-0260. The attack can be initiated remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2008-0270 | TaskFreak 0.6.1 index.php sContext sql injection (EDB-4899 / XFDB-39645)

Vuldb Updates

1 year 5 months ago

A vulnerability has been found in TaskFreak 0.6.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument sContext leads to sql injection. This vulnerability is known as CVE-2008-0270. The attack can be launched remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2008-0262 | Agares Media PhpAutoVideo 2.21 articlecat sql injection (EDB-4898 / XFDB-39641)

Vuldb Updates

1 year 5 months ago

A vulnerability was found in Agares Media PhpAutoVideo 2.21. It has been classified as critical. Affected is an unknown function. The manipulation of the argument articlecat leads to sql injection. This vulnerability is traded as CVE-2008-0262. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

vuldb.com

OilRig 利用 Windows 内核漏洞开展针对阿联酋和海湾地区的间谍活动

不安全

1 year 5 months ago

error code: 521

这些是什么设备，是蜜罐吗？

金色钱江

1 year 5 months ago

这是蜜罐嘛，还是nagios

这些是什么设备，是蜜罐吗？

金色钱江

1 year 5 months ago

这是蜜罐嘛，还是nagios

CVE-2016-1425 | Cisco IOS up to 15.4(1.13)S LLDP Processor memory corruption (ID 316010 / BID-91545)

Vuldb Updates

1 year 5 months ago

A vulnerability classified as critical was found in Cisco IOS up to 15.4(1.13)S. This vulnerability affects unknown code of the component LLDP Processor. The manipulation leads to memory corruption. This vulnerability was named CVE-2016-1425. Access to the local network is required for this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com

SpaceX 首次以抓取的方式回收 Starship 助推器

Solidot

1 year 5 months ago

SpaceX 在得克萨斯州东南部的 Starbase 基地成功进行了星舰（Starship）系统的第五次试飞，创造了太空探索的新里程碑。在这次试飞中，SpaceX 不仅成功发射了星舰火箭，还首次在助推器返回过程中，利用被昵称为“筷子”的机械臂，在发射台上抓回了高达 71 米的“超级重型”助推器。这一壮举标志着 SpaceX 在火箭完全可重复使用方面取得了重大突破。星舰的设计目标是将人和货物送至地球轨道、月球乃至火星。

揭秘：如何攻破Web文件上传漏洞并巧妙绕过安全策略？

FreeBuf互联网安全新媒体平台

1 year 5 months ago

前言在网安领域，文件上传漏洞是Web和移动应用程序中最常见的漏洞之一，在大多数网站中几乎都有文件上传功能,它允许攻击者上传恶意文件到服务器，可能导致远程代码执行、数据泄露等严重后果。本文将详细介绍We

Рэкет WordPress: как Мэтт Малленвег присвоил труд тысяч разработчиков

Securitylab.ru

1 year 5 months ago

Ситуация подняла вопрос о том, кто на самом деле контролирует плагины WordPress.

India, Latin America, or Vietnam: Where Should You Outsource Software Development in 2024?

Security Boulevard

1 year 5 months ago

As global markets become more interconnected and businesses strive for agility and cost-efficiency, outsourcing software development has become a strategic choice for companies worldwide. The...Read More

The post India, Latin America, or Vietnam: Where Should You Outsource Software Development in 2024? appeared first on ISHIR | Software Development India.

The post India, Latin America, or Vietnam: Where Should You Outsource Software Development in 2024? appeared first on Security Boulevard.

Chetan Saxena

中国研究员称找到方法利用量子退火破解公钥加密

Solidot

1 year 5 months ago

上海大学的研究人员在《计算机学报》上发表论文《基于 D-Wave Advantage 的量子退火公钥密码攻击算法研究》，称加拿大 D-Wave 公司的量子退火机器能被用于攻击公钥加密。研究人员调查了两类基于量子退火的 RSA 公钥密码攻击算法，一是将密码攻击数学方法转为组合优化问题或指数级空间搜索问题，二是基于量子退火算法融合密码攻击数学方法优化密码部件的攻击。结果显示，量子退火大幅度超过其它各类量子计算，退火机能分解的数字比通用机大几十个量级。与一些量子算法比，量子退火有相当高的稳定性。研究人员首次在 D-Wave Advantage 上实现了 50 比特 RSA 整数分解.