Aggregator

August 5, 2024The RTL-SDR hardware began its life as a DVB-T TV receiver USB stick, but these

以色列黑客宣布对伊朗持续的互联网中断负责。 该组织以 WeRedEvils 为名开展活动，至少自 2023 年 10 月以来就已存在，这可能是哈马斯袭击以色列的直接后果，从而引发了当前的加沙战争。 “接下来几分钟，我们将攻击伊朗的系统和互联网提供商。”WeRedEvils 昨天在 Telegram 上表示。“猛烈的打击即将到来。” 根据该组织自己的说法，这次攻击是成功的，他们声称已经成功侵入伊朗的计算机系统，窃取数据并导致互联网中断。该组织声称他们已将窃取的信息转交给以色列政府。 作为证据，WeRedEvils 指出，信息和通信技术部网站 ict.gov.ir 目前已瘫痪，伊朗各部委的大多数其他网站也同样瘫痪，并出现“响应时间过长”的错误。一些网站还出现 403 错误。 《The Register》仅找到两个可在美国访问的政府部门页面，一个是该国文化部，另一个是外交部。 目前还不清楚 WeRedEvils 究竟造成了多大的损失，或者它是否应对当前的中断负全部责任。 WeRedEvils 声称，去年 10 月，它曾袭击伊朗电网，导致电网瘫痪两小时。   转自军哥网络安全读报，原文链接：https://mp.weixin.qq.com/s/qzJ9kecAyX8K93tdE7R9lg 封面来源于网络，如有侵权请联系删除

A vulnerability was found in Macaron Himer Plugin up to 2.1.2 on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the component Private Group Handler. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2024-2232. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in WP-FeedStats wp-eMember Plugin up to 10.6.x on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-5081. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Ditty Plugin up to 3.1.44 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-6710. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Collect.chat Chatbot Plugin up to 2.4.3 on WordPress. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-6498. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

报名截止时间：8月9日（周五）24:00 GMT+7

A vulnerability classified as problematic was found in Community Events Plugin up to 1.5.0 on WordPress. This vulnerability affects unknown code of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-6270. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

China-linked APT41 breached Taiwanese research institute China-linked group APT41 breached a T

China-linked group APT41 breached a Taiwanese government-affiliated research institute using ShadowPad and Cobalt Strike. Cisco Talos researchers reported that the China-linked group compromised a Taiwanese government-affiliated research institute. The experts attributed the attack with medium confidence to the APT41 group. The campaign started as early as July 2023 and threat actors delivered the ShadowPad malware, Cobalt […]

A vulnerability classified as problematic has been found in Pinpoint Booking System Plugin 2.9.9.2.9 on WordPress. This affects an unknown part of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-3636. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apache FAB provider 1.2.0/1.2.1 on Airflow. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to session expiration. This vulnerability is handled as CVE-2024-42447. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Rocket.Chat up to 6.10.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Twilio Webhook Endpoint. The manipulation leads to server-side request forgery. This vulnerability is known as CVE-2024-39713. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Pimax Play and PiTool. It has been classified as critical. Affected is an unknown function of the component Websocket Connection Handler. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2024-41889. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in ZEXELON ZWX-2000CSW2-HN and classified as critical. This issue affects some unknown processing of the component Configuration Handler. The manipulation leads to hard-coded credentials. The identification of this vulnerability is CVE-2024-39838. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Hamastar MeetingHub Paperless Meetings 2021 and classified as problematic. This vulnerability affects the function ebooknote of the component XML File Handler. The manipulation leads to unprotected storage of credentials. This vulnerability was named CVE-2024-6118. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as very critical, was found in Hamastar MeetingHub Paperless Meetings 2021. This affects an unknown part of the component ASP File Handler. The manipulation leads to unrestricted upload. This vulnerability is uniquely identified as CVE-2024-6117. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in ZEXELON ZWX-2000CSW2-HN. Affected by this issue is some unknown functionality of the component Configuration Handler. The manipulation leads to permission issues. This vulnerability is handled as CVE-2024-41720. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

Network Security / VulnerabilityA high-severity security bypass vulnerability has been disclosed i

A high-severity security bypass vulnerability has been disclosed in Rockwell Automation ControlLogix 1756 devices that could be exploited to execute common industrial protocol (CIP) programming and configuration commands. The flaw, which is assigned the CVE identifier CVE-2024-6242, carries a CVSS v3.1 score of 8.4. "A vulnerability exists in the affected products that allows a threat actor to