Aggregator

HKCERT CTF 2025 labyrinth反序列化学习——主要考察了hessian反序列化的利用

A vulnerability has been found in Adobe InDesign Desktop up to 19.5.5/21.0 and classified as critical. This issue affects some unknown processing of the component File Handler. This manipulation causes uninitialized pointer. This vulnerability is handled as CVE-2026-21275. The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.

webredjs看到next.js框架，就很容易想到前段时间很火的CVE-2025-55182直接用网上现成的poc获取flagAI_WAF抓包，使用-1发现sql注入发现使用一些关键字会进行拦截尝试进行绕过，发现使用内联绕过可以成功，`/*!50000 */`ai会认为这个是被注释掉的，但是当前MySQL版本大于5.00.00版本，会执行注释中的语法，成功绕过测试发现第一个字段有回显获取所有表名

A vulnerability, which was classified as critical, was found in n8n-io n8n up to 2.1.x. This vulnerability affects unknown code of the component Source IP Address Handler. The manipulation results in format string. This vulnerability is known as CVE-2025-68949. It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.

这个题被打穿了，我坐牢到2点多才出，其他题根本没时间看

A vulnerability, which was classified as critical, has been found in Adobe Dreamweaver Desktop up to 21.6. This affects an unknown part of the component File Handler. The manipulation leads to incorrect authorization. This vulnerability is traded as CVE-2026-21274. It is possible to initiate the attack remotely. There is no exploit available. It is advisable to upgrade the affected component.

第三届长城杯初赛 web部分赛题wp

A vulnerability classified as critical was found in Adobe Dreamweaver Desktop up to 21.6. Affected by this issue is some unknown functionality of the component File Handler. Executing a manipulation can lead to improper input validation. This vulnerability appears as CVE-2026-21271. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.

记一次Java代码审计——LuckyFrameWeb-V3.1_Beta

A vulnerability classified as critical has been found in Adobe Dreamweaver Desktop up to 21.6. Affected by this vulnerability is an unknown functionality of the component File Handler. Performing a manipulation results in improper input validation. This vulnerability is reported as CVE-2026-21268. The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.

随着Agentic AI（具备自主规划、工具调用与多步任务执行能力的智能体系统）在生产环境中的规模化应用，传统大语言模型（LLM）的安全防护机制已难以应对其独特的攻击面。这类系统通过多代理协作、外部工具集成和自主决策能力，在提升效率的同时，也引入了全新的安全风险——攻击者可利用提示注入、工具滥用等手段，绕过安全机制实现未授权访问、数据泄露甚至系统控制

本文对一套混合架构的Java Web企业系统进行代码审计，发现任意文件读取、SSRF、文件上传、SQL注入等高危漏洞，并深入分析鉴权机制缺陷与绕过方法。

A vulnerability described as critical has been identified in Imagination Graphics DDK up to 1.15 RTM/1.17 RTM/1.18 RTM/25.2 RTM. Affected is an unknown function. Such manipulation leads to use after free. This vulnerability is documented as CVE-2025-10865. The attack needs to be performed locally. There is not any exploit available. Upgrading the affected component is recommended.

某低代码BPM 代码审计分析

主页涵盖常见绕过方法、实战存在场景及扩大危害利用手法

近期无论是对设备还是对传统WEB行业都所有企业都追随着AI大潮，在自身产品原有的基础上加入了AI智能体，所以笔者就在此聊聊关于OWASP LLM的漏洞TOP10。

A vulnerability marked as critical has been reported in Adobe Dreamweaver Desktop up to 21.6. This impacts an unknown function of the component File Handler. This manipulation causes os command injection. This vulnerability is registered as CVE-2026-21267. Remote exploitation of the attack is possible. No exploit is available. It is suggested to upgrade the affected component.

最近要研究一些 AI 框架/组件漏洞，看了好多，于是来分析一些 ollama 的漏洞吧，还记得当时 deepseek 爆火的时候，因为访问特别的卡，所以网上一堆本地部署 deekseek 的教程，就是使用 ollama，但是 ollama 有一个未授权漏洞，当时就一堆人在白嫖算力，哈哈哈哈哈哈 看了先知社区上，竟然没有分析这个漏洞的，于是来分析一波，正好也是项目需要

复现 CVE-2017-17215：华为 HG532 路由器因 TR-064 服务对外暴露（常见 37215 端口），其 /ctrlt/DeviceUpgrade_1 的 DeviceUpgrade 动作对 SOAP 参数缺少过滤，攻击者可在 NewStatusURL/NewDownloadURL 中插入命令实现 远程命令执行（RCE）。本文给出仿真环境搭建与 PoC 触发验证思路，并从固件侧定位

简单的Python Flask