Aggregator

Cybersecurity researchers have called attention to a cyber attack in which unknown threat actors deployed an open-source endpoint monitoring and digital forensic tool called Velociraptor, illustrating ongoing abuse of legitimate software for malicious purposes. "In this incident, the threat actor used the tool to download and execute Visual Studio Code with the likely intention of creating a

短直一体与公私域联动。

A critical zero-day vulnerability in Citrix NetScaler products, identified as CVE-2025-6543, has been actively exploited by threat actors since at least May 2025, months before a patch was made available. While Citrix initially downplayed the flaw as a “memory overflow vulnerability leading to unintended control flow and Denial of Service,” it has since been revealed […]

The post Critical Citrix 0-Day Vulnerability Exploited Since May, Leaving Global Entities Exposed appeared first on Cyber Security News.

A vulnerability was found in O2OA up to 10.0-410. It has been declared as problematic. This vulnerability affects unknown code of the file /x_processplatform_assemble_designer/jaxrs/script of the component Personal Profile Page. Executing manipulation of the argument name/alias/description/applicationName can lead to cross site scripting. This vulnerability is handled as CVE-2025-9719. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability was found in O2OA up to 10.0-410. It has been classified as problematic. This affects an unknown part of the file /x_processplatform_assemble_designer/jaxrs/process of the component Personal Profile Page. Performing manipulation of the argument name/alias results in cross site scripting. This vulnerability is known as CVE-2025-9718. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor replied in the GitHub issue (translated from simplified Chinese): "This issue will be fixed in the new version."

A vulnerability was found in O2OA up to 10.0-410 and classified as problematic. Affected by this issue is some unknown functionality of the file /x_organization_assemble_control/jaxrs/unit/ of the component Personal Profile Page. Such manipulation of the argument name/shortName/distinguishedName/pinyin/pinyinInitial/levelName leads to cross site scripting. This vulnerability is traded as CVE-2025-9717. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in O2OA up to 10.0-410 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /x_processplatform_assemble_designer/jaxrs/form of the component Personal Profile Page. This manipulation of the argument name/alias/description causes cross site scripting. This vulnerability appears as CVE-2025-9716. The attack may be initiated remotely. In addition, an exploit is available. The vendor replied in the GitHub issue (translated from simplified Chinese): "This issue will be fixed in the new version."

A vulnerability, which was classified as problematic, was found in O2OA up to 10.0-410. Affected is an unknown function of the file /x_cms_assemble_control/jaxrs/script of the component Personal Profile Page. The manipulation of the argument name/alias/description results in cross site scripting. This vulnerability is reported as CVE-2025-9715. The attack can be launched remotely. Moreover, an exploit is present. The vendor replied in the GitHub issue (translated from simplified Chinese): "This issue will be fixed in the new version."

Submit #637247 / VDB-322007

Submit #637246 / VDB-322006

Submit #637245 / VDB-322005

Submit #637244 / VDB-322004

Submit #637243 / VDB-322003

Покупатели получат право вернуть «неполноценное» устройство.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.16.3. This impacts the function f2fs_get_dnode_of_data. The manipulation leads to out-of-bounds read. This vulnerability is documented as CVE-2025-38677. The attack requires being on the local network. There is not any exploit available. It is advisable to upgrade the affected component.

关键词零日漏洞近日，FreePBX 官方发布了一则严重安全公告，提醒用户必须立即限制 FreePBX 管理界面

关键词AI近日，一种新型攻击手段开始出现，其通过在人工智能系统处理的图像中植入恶意提示词，再将图像传输至大型语

关键词AI当心！你的身份证照片可能被AI生成了动态视频。因对AI换脸技术感兴趣，陈某自学相关技能并在网上发布作品。

用户在 Reddit 的 r/blackhat 论坛中询问关于学习内核漏洞利用技术的资源需求。

A new malware campaign, dubbed “Sindoor Dropper,” is targeting Linux systems using sophisticated spear-phishing techniques and a multi-stage infection chain. The campaign leverages lures themed around the recent India-Pakistan conflict, known as Operation Sindoor, to entice victims into executing malicious files. This activity’s standout feature is its reliance on weaponized .desktop files, a method previously […]

The post New ‘Sindoor Dropper’ Malware Targets Linux Systems with Weaponized .desktop Files appeared first on Cyber Security News.