公安部专项工作通报:某人工智能数据公司因个人信息保护违规被罚
公安网安部门依法对某人工智能服务科技有限公司予以行政处罚
Aggregator
有趣的逻辑缺陷到后台登录
3 months ago
Скачали Chrome или Telegram? Возможно, за вами уже следят. Коварная ловушка в поисковике
3 months ago
Хакеры научились обманывать Google и даже антивирус.
Palo Alto Networks User-ID 凭据代理漏洞以明文形式暴露密码
3 months ago
被泄露的数据类型尚不得知
三星修复已遭活跃利用的 0day 漏洞
3 months ago
速修复
Kill
3 months ago
You must login to view this content
cohenido
CVE-2025-10472 | harry0703 MoneyPrinterTurbo up to 1.2.6 URL video.py download_video/stream_video file_path path traversal
3 months ago
A vulnerability, which was classified as critical, has been found in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element is the function download_video/stream_video of the file app/controllers/v1/video.py of the component URL Handler. The manipulation of the argument file_path leads to path traversal.
This vulnerability is documented as CVE-2025-10472. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com
Kotlin Multiplatform 原理深入分析
3 months ago
1500+全球开发者齐聚GOSIM杭州,MonkeyCode引爆开源AI热潮
3 months ago
强势围观
国家级AI安全大赛折桂!长亭科技智能安全守护数字未来
3 months ago
👍 👍 👍
Hackers using generative AI “ChatGPT” to evade anti-virus defenses
3 months ago
The Kimsuky APT group has begun leveraging generative AI ChatGPT to craft deepfake South Korean military agency ID cards. Phishing lures deliver batch files and AutoIt scripts designed to evade anti-virus scanning through sophisticated obfuscation. Organizations must deploy endpoint detection and response (EDR) solutions to unmask hidden scripts and secure endpoints. On July 17, 2025, […]
The post Hackers using generative AI “ChatGPT” to evade anti-virus defenses appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Mayura Kathir
CVE-2025-41713 | WAGO Devices Configuration insecure default initialization of resource (VDE-2025-083 / EUVD-2025-29160)
3 months ago
A vulnerability classified as problematic was found in WAGO Devices. The affected element is an unknown function of the component Configuration Handler. Executing manipulation can lead to insecure default initialization of resource.
This vulnerability is registered as CVE-2025-41713. It is possible to launch the attack remotely. No exploit is available.
Upgrading the affected component is advised.
vuldb.com
CVE-2025-10471 | ZKEACMS 4.3 MediaController.cs Proxy url server-side request forgery
3 months ago
A vulnerability classified as critical has been found in ZKEACMS 4.3. Impacted is the function Proxy of the file src/ZKEACMS/Controllers/MediaController.cs. Performing manipulation of the argument url results in server-side request forgery.
This vulnerability is cataloged as CVE-2025-10471. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
【中秋好礼OSRC免费送!】双十一保卫战正在火热进行中
3 months ago
免费中秋礼盒、新人额外加成、还有全系数业务翻倍都在OSRC等着你!
【2503众测挑战赛】测试环境大搜罗,超50个域名等你来测!
3 months ago
Submit #648393: MoneyPrinterTurbo project MoneyPrinterTurbo 1.2.6 Absolute Path Traversal [Accepted]
3 months ago
Submit #648393 / VDB-323892
xuanSAMA
速更9月补丁!三星设备遇图像漏洞,不点开图片也能被入侵
3 months ago
三星 CVE-2025-21043 漏洞修复,用户别等推送主动更
实现简易ARK工具-GDT表
3 months ago
看雪论坛作者ID:X66iaM
智能时代·可信安全 | 纽创信安——即将亮相第九届安全开发者峰会(SDC2025)
3 months ago
纽创信安,将作为黄金合作伙伴盛大出席峰会
Submit #648387: SeriaWei ZKEACMS v4.3 Non-blind SSRF [Accepted]
3 months ago
Submit #648387 / VDB-323890
Yu_Bao