从零开始手搓C2框架
一步一步构建出C2,毫无保留!
Aggregator
dataease最新绕过利用json覆盖属性RCE
6 hours 48 minutes ago
在经历了那么多伦的 JDBC 的攻防绕过,竟然还能有最新的绕过手法,学习了技巧后,发现核心原理就是 json 的解析覆盖属性,以前也用过这个 trick,没想到还能在 jdbc 绕过用到这个 trick,而且感觉这个思路很容易再去使用到其他框架上
从漏洞聚集现象到o2oa的20个0day漏洞挖掘
6 hours 49 minutes ago
从漏洞聚集现象到o2oa的20个0day漏洞挖掘
进程创建流程时间线中引入的思考
6 hours 50 minutes ago
进程创建流程时间线中,通过AppVerifier和ShimEnginer接口来起到一种隐蔽的起进程形式的注入。
通过HTB靶机学习恶劣容器的内网环境下如何内网渗透
6 hours 50 minutes ago
通过Reddish这台靶机学习恶劣docker下的各种骚操作,以进行快速内网渗透,docker逃逸
Cherry Studio最新高危漏洞从伪造恶意MCP服务器到RCE
6 hours 50 minutes ago
AI 最近几年大爆火,引出的漏洞也不少,这就来分析一下最近爆出的通过伪造恶意的 MCP 服务来造成的 RCE 漏洞,看到阿里云漏洞库的通报就来分析分析
【实战】文都 OA 云协同系统分析+漏洞挖掘
6 hours 50 minutes ago
文都 OA 云协同系统分析+漏洞挖掘
1Panel未授权RCE漏洞分析
6 hours 52 minutes ago
刚睡醒,就看到群里都在转发一个洞,而且官方还很贴心,代码和思路都有,那就也来跟着学习思路了
1Panel hvv 倒是遇到了一些,不过确实没有打
https://github.com/1Panel-dev/1Panel
CVE-2022-41066 | Microsoft Dynamics 365 Business Central 2022 information disclosure
6 hours 53 minutes ago
A vulnerability was found in Microsoft Dynamics 365 Business Central 2022 and classified as problematic. Affected is an unknown function. The manipulation results in information disclosure.
This vulnerability was named CVE-2022-41066. The attack may be performed from a remote location. There is no available exploit.
Applying a patch is advised to resolve this issue.
vuldb.com
CVE-2024-20377 | Cisco Firepower Management Center up to 7.4.1.1 cross site scripting (cisco-sa-fmc-xss-infodisc-RL4mJFer)
6 hours 53 minutes ago
A vulnerability labeled as problematic has been found in Cisco Firepower Management Center. This issue affects some unknown processing. Such manipulation leads to cross site scripting.
This vulnerability is listed as CVE-2024-20377. The attack may be performed from a remote location. There is no available exploit.
The affected component should be upgraded.
vuldb.com
CVE-2025-2743 | zhijiantianya ruoyi-vue-pro 2.4.1 Material Upload Interface upload-temporary File path traversal
6 hours 53 minutes ago
A vulnerability described as critical has been identified in zhijiantianya ruoyi-vue-pro 2.4.1. Impacted is an unknown function of the file /admin-api/mp/material/upload-temporary of the component Material Upload Interface. Executing manipulation of the argument File can lead to path traversal.
The identification of this vulnerability is CVE-2025-2743. The attack may be launched remotely. Furthermore, there is an exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com
CVE-2025-2596 | Checkmk up to 2.1.0p50/2.2.0p40/2.4.0b1 session expiration
6 hours 53 minutes ago
A vulnerability classified as problematic was found in Checkmk up to 2.1.0p50/2.2.0p40/2.4.0b1. This vulnerability affects unknown code. The manipulation results in session expiration.
This vulnerability is reported as CVE-2025-2596. The attack can be launched remotely. No exploit exists.
Applying a patch is advised to resolve this issue.
vuldb.com
CVE-2025-31494 | Significant-Gravitas AutoGPT up to 0.6.0 information disclosure (GHSA-958f-37vw-jx8f)
6 hours 53 minutes ago
A vulnerability categorized as problematic has been discovered in Significant-Gravitas AutoGPT up to 0.6.0. This impacts an unknown function. Such manipulation leads to information disclosure.
This vulnerability is documented as CVE-2025-31494. The attack can be executed remotely. There is not any exploit available.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2025-2092 | Checkmk up to 2.1.0p49/2.2.0p40/2.3.0p28 log file
6 hours 53 minutes ago
A vulnerability described as problematic has been identified in Checkmk up to 2.1.0p49/2.2.0p40/2.3.0p28. The impacted element is an unknown function. Executing manipulation can lead to sensitive information in log files.
The identification of this vulnerability is CVE-2025-2092. The attack can only be executed locally. There is no exploit available.
Upgrading the affected component is recommended.
vuldb.com
CVE-2025-4357 | Tenda RX3 16.03.13.11_multi /goform/telnet command injection
6 hours 53 minutes ago
A vulnerability was found in Tenda RX3 16.03.13.11_multi. It has been declared as critical. This affects an unknown part of the file /goform/telnet. Executing manipulation can lead to command injection.
The identification of this vulnerability is CVE-2025-4357. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-33027 | Bandisoft Bandizip up to 7.37 Archived Files inclusion of web functionality from an untrusted source (EUVD-2025-14686)
6 hours 53 minutes ago
A vulnerability, which was classified as problematic, was found in Bandisoft Bandizip up to 7.37. Impacted is an unknown function of the component Archived Files Handler. The manipulation results in inclusion of web functionality from an untrusted source.
This vulnerability is reported as CVE-2025-33027. The attack can be launched remotely. No exploit exists.
vuldb.com
CVE-2025-32756 | Fortinet FortiVoice Hash Cookie stack-based overflow (FG-IR-25-254 / EUVD-2025-14705)
6 hours 53 minutes ago
A vulnerability was found in Fortinet FortiVoice, FortiRecorder, FortiMail, FortiNDR and FortiCamera. It has been rated as critical. Affected is an unknown function of the component Hash Cookie Handler. Performing manipulation results in stack-based buffer overflow.
This vulnerability is reported as CVE-2025-32756. The attack is possible to be carried out remotely. Moreover, an exploit is present.
Upgrading the affected component is advised.
vuldb.com
记一次对诈骗app渗透测试
6 hours 53 minutes ago
对一次诈骗app渗透测试
安卓Intent自动化灰盒模糊测试优化技术
6 hours 54 minutes ago
在安卓生态系统中,Intent作为跨组件通信的核心机制,既是应用间协作的桥梁,也是安全隔离的薄弱环节。近年来,Intent相关漏洞呈现持续增长趋势,这些漏洞往往源于开发者对组件暴露范围的误判,导致恶意应用可通过精心构造的Intent调用敏感功能。传统安全测试工具要么局限于静态分析,要么无法有效覆盖闭源应用,本文介绍的MALintent框架的出现填补了这一空白——它是首个针对闭源安卓应用的灰盒Int
OLLVM学习以及平坦化源码分析
6 hours 57 minutes ago
LLVM 是一种模块化编译框架,通过 IR 和 Pass 实现跨平台优化与扩展;OLLVM 则在此基础上通过自定义 Pass 注入控制流平坦化、虚假控制流、指令替换等手段实现代码混淆。
优化追求性能与简洁,而混淆则有意制造复杂度,用于提高逆向分析的难度。