Aggregator

Chinese APT Hackers Using Proxy and VPN Service to Anonymize Infrastructure

Cyber Security News
3 months 2 weeks ago

In recent months, cybersecurity researchers have observed a surge in targeted campaigns by a sophisticated Chinese APT group leveraging commercial proxy and VPN services to mask their attack infrastructure. The emergence of this tactic coincides with a broader shift toward commoditized anonymization platforms that blend threat actor traffic with legitimate user activity. Initial compromise vectors […]

The post Chinese APT Hackers Using Proxy and VPN Service to Anonymize Infrastructure appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2025-56215 | PHPGurukul Hospital Management System 4.0 contact.php pagetitle sql injection

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been rated as critical. The affected element is an unknown function of the file contact.php. This manipulation of the argument pagetitle causes sql injection. The identification of this vulnerability is CVE-2025-56215. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

CVE-2025-56214 | PHPGurukul Hospital Management System 4.0 index.php Username sql injection

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability was found in PHPGurukul Hospital Management System 4.0. It has been declared as critical. Impacted is an unknown function of the file index.php. The manipulation of the argument Username results in sql injection. This vulnerability was named CVE-2025-56214. The attack may be performed from a remote location. There is no available exploit.
vuldb.com

CVE-2025-50900 | Rebuild 4.0.4 com.rebuild.web.RebuildWebinterceptor/ preHandle access control

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability was found in Rebuild 4.0.4. It has been classified as critical. This issue affects the function preHandle of the component com.rebuild.web.RebuildWebinterceptor/. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2025-50900. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com

CVE-2025-56212 | PHPGurukul Hospital Management System 4.0 add-doctor.php docname sql injection

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability was found in PHPGurukul Hospital Management System 4.0 and classified as critical. This vulnerability affects unknown code of the file add-doctor.php. Executing manipulation of the argument docname can lead to sql injection. This vulnerability is handled as CVE-2025-56212. The attack can be executed remotely. There is not any exploit available.
vuldb.com

CVE-2025-5302 | run-llama llama_index up to 0.12.37 JSONReader recursion

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability has been found in run-llama llama_index up to 0.12.37 and classified as problematic. This affects an unknown part of the component JSONReader. Performing manipulation results in uncontrolled recursion. This vulnerability is known as CVE-2025-5302. Remote exploitation of the attack is possible. No exploit is available. The affected component should be upgraded.
vuldb.com

CVE-2025-9476 | SourceCodester Human Resource Information System 1.0 editemployee_process.php employee_file201 unrestricted upload

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability, which was classified as critical, was found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /Superadmin_Dashboard/process/editemployee_process.php. Such manipulation of the argument employee_file201 leads to unrestricted upload. This vulnerability is traded as CVE-2025-9476. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-9475 | SourceCodester Human Resource Information System 1.0 editemployee_process.php employee_file201 unrestricted upload

VulDB Recent Entries
3 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin_Dashboard/process/editemployee_process.php. This manipulation of the argument employee_file201 causes unrestricted upload. This vulnerability appears as CVE-2025-9475. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com

CVE-2023-20172 | Cisco Identity Services Engine client-side enforcement of server-side security (cisco-sa-ise-file-delete-read-PK5ghDDd / EUVD-2023-24351)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Cisco Identity Services Engine. It has been classified as critical. Impacted is an unknown function. Performing manipulation results in client-side enforcement of server-side security. This vulnerability is identified as CVE-2023-20172. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2023-20164 | Cisco Identity Services Engine os command injection (cisco-sa-ise-injection-sRQnsEU9 / EUVD-2023-24343)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Cisco Identity Services Engine. It has been classified as critical. This affects an unknown part. This manipulation causes os command injection. This vulnerability is tracked as CVE-2023-20164. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is recommended.
vuldb.com

CVE-2023-20166 | Cisco Identity Services Engine path traversal (cisco-sa-ise-traversal-ZTUgMYhu / EUVD-2023-24345)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Cisco Identity Services Engine. It has been declared as problematic. This vulnerability affects unknown code. Such manipulation leads to path traversal: '../filedir'. This vulnerability is listed as CVE-2023-20166. The attack must be carried out locally. There is no available exploit. It is recommended to upgrade the affected component.
vuldb.com

CVE-2023-20167 | Cisco Identity Services Engine path traversal (cisco-sa-ise-traversal-ZTUgMYhu / EUVD-2023-24346)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Cisco Identity Services Engine. It has been rated as problematic. This issue affects some unknown processing. Performing manipulation results in path traversal: '../filedir'. This vulnerability is cataloged as CVE-2023-20167. The attack must be initiated from a local position. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2023-20171 | Cisco Identity Services Engine client-side enforcement of server-side security (cisco-sa-ise-file-delete-read-PK5ghDDd / EUVD-2023-24350)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Cisco Identity Services Engine and classified as critical. This issue affects some unknown processing. Such manipulation leads to client-side enforcement of server-side security. This vulnerability is referenced as CVE-2023-20171. It is possible to launch the attack remotely. No exploit is available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2023-20163 | Cisco Identity Services Engine os command injection (cisco-sa-ise-injection-sRQnsEU9 / EUVD-2023-24342)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Cisco Identity Services Engine and classified as critical. Affected by this issue is some unknown functionality. The manipulation results in os command injection. This vulnerability is identified as CVE-2023-20163. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

New Android Spyware Disguised as an Antivirus Attacking Business Executives

Cyber Security News
3 months 2 weeks ago

In recent months, security teams have observed the emergence of a highly versatile Android backdoor, Android.Backdoor.916.origin, masquerading as a legitimate antivirus application. Distributed via private messaging services under the guise of “GuardCB,” its icon closely mimics the emblem of the Central Bank of the Russian Federation against a shield background. Although the interface displays only […]

The post New Android Spyware Disguised as an Antivirus Attacking Business Executives appeared first on Cyber Security News.

Tushar Subhra Dutta

Managed ad