Aggregator

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. You’ve Got Malware: FINALDRAFT Hides in Your Drafts   Telegram Abused as C2 Channel for New Golang Backdoor   Infostealing Malware Infections in the U.S. Military & Defense Sector: A Cybersecurity Disaster in the Making   Analyzing ELF/Sshdinjector.A!tr with […]

A vulnerability, which was classified as problematic, was found in OpenText iManager up to 3.2.5.0. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2021-38134. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability has been found in OpenText iManager up to 3.2.6.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2022-26324. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in OpenText iManager up to 3.2.4.0 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2021-38119. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Microsoft Edge. This affects an unknown part. The manipulation leads to insufficient ui warning of dangerous operations. This vulnerability is uniquely identified as CVE-2024-49054. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

去年 3 月新华社报道；我国在西昌卫星发射中心使用长征二号丙运载火箭/远征一号S上面级发射 DRO-A/B 卫星，运载火箭一二级飞行正常，上面级飞行异常，卫星未准确进入预定轨道，目前正在开展相关处置工作。DRO-A/B 卫星设计进入绕月的远逆行轨道（distant retrograde orbit 或 DRO），与近地轨道上的卫星 DRO-L 进行通信。因上面级问题 DRO-A/B 被滞留在低地球轨道上。在之后的 167 天内，中科院微小卫星研究所通过五次卫星轨道机动，五次卫星路线微调，以及三次地球和月球的引力助推，DRO-A/B 成功进入了月球轨道。Harvard-Smithsonian 天文学家 Jonathan McDowell 称赞这是一次令人印象深刻的成就。DRO-A/B 在抵达绕月的远逆行轨道之后就分离了。根据美国太空军的监测，卫星轨道的远地点距离地球大约 58 万公里，近地点距离 29 万公里。

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Lazarus APT stole $1.5B from Bybit, it is the largest cryptocurrency heist ever Apple removes iCloud encryption in […]

网络安全面试宝典

A vulnerability classified as problematic has been found in argoproj argo-helm up to 0.44.x. Affected is an unknown function. The manipulation leads to insufficient granularity of access control. This vulnerability is traded as CVE-2024-52814. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in QNAP Photo Station up to 6.4.2. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-32767. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in QNAP Photo Station up to 6.4.2. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-32769. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Public Knowledge Project PKP Platform up to 3.3.0.15. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-50965. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in QNAP Photo Station up to 6.4.2. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-32770. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in QNAP Photo Station up to 6.4.2. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-32768. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Linkedin 通过构建 AI 驱动的安全态势平台（SPP），将知识图谱与生成式 AI 深度融合，实现漏洞响应效率提升 150%、资产覆盖率增长 155%，为超十亿用户构建智能防御新范式。

Linkedin 通过构建 AI 驱动的安全态势平台（SPP），将知识图谱与生成式 AI 深度融合，实现漏洞响应效率提升 150%、资产覆盖率增长 155%，为超十亿用户构建智能防御新范式。

一键过滤burpsuite杂包，实现精准抓包

一次性集齐，常见漏洞挖掘工具：fastjson、shiro、jboss、struts2、nacos、禅道、若依、通达、用友、ak泄露利用、Thinkphp、weblogic等