Aggregator

A vulnerability, which was classified as critical, was found in Apple Mac OS X up to 10.11.5. Affected is an unknown function of the component QuickTime. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2016-4599. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in AYS AI ChatBot with ChatGPT and Content Generator Plugin up to 2.0.x on WordPress. It has been declared as critical. Affected by this vulnerability is the function AYS_chatgpt_disconnect/AYS_chatgpt_connect/AYS_chatgpt_save_feedback. The manipulation leads to improper access controls. This vulnerability is known as CVE-2024-7714. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in ESET NOD32 Antivirus, Internet Security, Smart Security Premium, Security Ultimate, Small Business Security, Safe Server, Endpoint Antivirus, Endpoint Security for Windows, Server Security for Windows Server, Mail Security for Microsoft Exchange Server, Mail Security for IBM Domino, Security for Microsoft SharePoint Server and File Security for Microsoft Azure up to 1250 on Windows. This affects an unknown part. The manipulation leads to insecure operation on windows junction / mount point. This vulnerability is uniquely identified as CVE-2024-7400. Local access is required to approach this attack. There is no exploit available.

整体活动时间：2024.9.19-2024.10.13

为大家推荐 cursor， 一款基于 vscode 的 AI IDE 优点 规则文件 https://cursor.directory Copy and add […]

The U.S. Department of Justice (DoJ) has charged a 39-year-old U.K. national for perpetrating a hack-to-trade fraud scheme that netted him nearly $3.75 million in illegal profits. Robert Westbrook of London was arrested last week and is expected to be extradited to the U.S. to face charges related to securities fraud, wire fraud, and five counts of computer fraud. According to the court

国庆节快乐！

NamedPipeMaster NamedPipeMaster is a versatile tool for analyzing and monitoring in named pipes. It includes Ring3NamedPipeConsumer for direct server interaction, Ring3NamedPipeMonitor for DLL-based API hooking and data collection, and Ring0NamedPipeFilter for comprehensive system-wide monitoring....

The post NamedPipeMaster: A tool used to analyze and monitor in named pipes appeared first on Penetration Testing Tools.

CHIPSEC CHIPSEC is a framework for analyzing the security of PC platforms including hardware, system firmware (BIOS/UEFI), and platform components. It includes a security test suite, tools for accessing various low-level interfaces, and forensic...

The post chipsec: Platform Security Assessment Framework appeared first on Penetration Testing Tools.

The PlayStation Network is suffering a global outage, with subscribers confirming that they can no longer play online games or access the company's website. [...]

金秋十月，举国同庆！