Aggregator

关键词安全漏洞网络安全社区最近面临着一场轰动，起因是社交媒体平台 X（正式名称为 Twitter）的一名用户声称拥有流行文件归档程序 7-Zip 的零日漏洞。该用户名为 @NSA_Employee39

关键词网络安全一名 20 岁的美国陆军士兵卡梅伦约翰瓦吉尼斯 (Cameron John Wagenius) 因涉嫌出售从主要电信公司 AT&T 和 Verizon 窃取的机密客户通话记录而被联邦当局

关键词GitHub卡内基梅隆大学、北卡罗来纳州立大学和 Socket 的研究人员开展的一项研究对 GitHub 星级评定系统的完整性提出了质疑。该团队发现，虚假“星级”数量激增，令人担忧，这些“星级”

The amount of crypto stolen in the Web3 ecosystem rose by 31.6% compared to 2023, with phishing the most costly attack vector

推动网络安全创新与创业实现新飞跃

网络犯罪分子不断调整他们的攻击方式、工具和战术，以抓住新机会、攻破漏洞并规避安全检测

Threatcl是一款功能强大的威胁记录模型，可以帮助广大研究人员更加清楚地记录威胁，并推动安全态势的提升。

A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user/update_account.php. The manipulation of the argument username leads to sql injection. This vulnerability is handled as CVE-2025-0201. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in code-projects Point of Sales and Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /user/search_num.php. The manipulation of the argument search leads to sql injection. This vulnerability is known as CVE-2025-0200. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minus_cart.php. The manipulation of the argument id leads to sql injection. This vulnerability is traded as CVE-2025-0199. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in code-projects Point of Sales and Inventory Management System 1.0. This issue affects some unknown processing of the file /user/search_result.php. The manipulation of the argument id leads to sql injection. The identification of this vulnerability is CVE-2025-0198. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in code-projects Point of Sales and Inventory Management System 1.0. This vulnerability affects unknown code of the file /user/search.php. The manipulation of the argument name leads to sql injection. This vulnerability was named CVE-2025-0197. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in code-projects Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file /user/plist.php. The manipulation of the argument cat leads to sql injection. This vulnerability is uniquely identified as CVE-2025-0196. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/del_product.php. The manipulation of the argument id leads to sql injection. This vulnerability is handled as CVE-2025-0195. The attack may be launched remotely. Furthermore, there is an exploit available.

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

在过去的 2024 年里，网络安全行业面临着诸多严峻挑战，Infosecurity 杂志与众多网络安全领域的领导者进行了深入交谈，倾听他们眼中当今网络安全行业所面临的最重大问题和挑战，这些来自一线从业

关注安全419,及时获取最新网安招聘信息!

方方面面的网络安全挑战，需要在不同的问题上权衡利弊、精准施策，不断探索应对之法。

Submit #473418 / VDB-290138