Aggregator

A vulnerability classified as critical was found in Campcodes Online Movie Theater Seat Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /manage_reserve.php. The manipulation of the argument mid leads to sql injection. This vulnerability is known as CVE-2025-7455. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Campcodes Online Movie Theater Seat Reservation System 1.0. Affected is an unknown function of the file /admin/manage_theater.php. The manipulation of the argument ID leads to sql injection. This vulnerability is traded as CVE-2025-7454. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

国密功能实战演练

Submit #609491 / VDB-316102

Submit #609490 / VDB-316101

Submit #609489 / VDB-316100

Submit #609488 / VDB-316099

Submit #609487 / VDB-316098

Указ вступил в силу, реестр работает, а экзамены всё равно по-старому.

A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the component JSON Web Token Handler. The manipulation with the input 123 leads to use of hard-coded password. The identification of this vulnerability is CVE-2025-7453. The attack may be initiated remotely. Furthermore, there is an exploit available.

Advanced Micro Devices has disclosed a series of critical security vulnerabilities affecting multiple generations of its processor architectures, stemming from transient scheduler attacks that exploit speculative execution mechanisms. The vulnerabilities, identified through four distinct Common Vulnerabilities and Exposures (CVE) entries, pose significant risks to data confidentiality across enterprise and consumer computing environments. The security flaws […]

The post AMD Warns of Transient Scheduler Attacks Affecting Wide Range of Chipsets appeared first on Cyber Security News.

Submit #608447 / VDB-316097

The Apache Software Foundation has released Apache HTTP Server version 2.4.64, addressing eight critical security vulnerabilities that affected versions spanning from 2.4.0 through 2.4.63.  This latest update resolves a range of issues, including HTTP response splitting, server-side request forgery (SSRF), and denial of service vulnerabilities that could potentially compromise server security and performance. Key Takeaways1. […]

The post Apache HTTP Server 2.4.64 Released With Patch for 8 Vulnerabilities appeared first on Cyber Security News.

A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It has been declared as critical. This vulnerability affects the function GetFile of the file go-chat/api/v1/file_controller.go of the component Endpoint. The manipulation of the argument fileName leads to path traversal. This vulnerability was named CVE-2025-7452. The attack can be initiated remotely. Furthermore, there is an exploit available. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.

法国国家信息与自由委员会（CNIL）发布关于数据转移影响评估（TIA）的指南，帮助组织将个人数据转移到欧盟以外地区时确保符合GDPR要求。指南基于2025年1月公开咨询结果制定，涵盖评估步骤、注意事项及合规建议。

当前环境出现异常问题，需完成验证后才能继续访问相关内容或服务。

当前环境出现异常问题，需完成验证后才能继续访问相关内容或服务。