Aggregator

Submit #505124 / VDB-296566

Threat actors are exploiting major Counter-Strike 2 (CS2) competitions, like IEM Katowice 2025 and PGL Cluj-Napoca 2025, to defraud gamers and steal their Steam accounts and cryptocurrency. [...]

今天给大家推送一个可以获取美国主要政客简历、电话、秘书、助理等信息的网址“国会名录”​：https://www.govinfo.gov/app/collection/cdir

朝鲜黑客再次作案。

Een fles champagne slaat kapot tegen de boeg. Zo doopte kroonprinses Amalia vandaag het bevoorradingsschip met de naam Den Helder. Dit nieuwe marineschip gaat andere schepen voorzien van brandstof, munitie, reservedelen en voeding. Dat gebeurt wereldwijd. De ceremonie vond plaats op de werf van hoofdaannemer Damen Naval in Vlissingen. Onder de 1.100 gasten was ook staatssecretaris Gijs Tuinman.

A vulnerability classified as problematic was found in Faster Themes FastBook Plugin up to 1.1 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2024-53762. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Arrow Design Out Of Stock Badge Plugin up to 1.3.1 on WordPress. Affected is an unknown function. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2024-53754. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability has been found in No-nonsense Labs Document & Data Automation Plugin up to 1.6.1 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2024-52477. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Udi Dollberg Add Chat App Button Plugin up to 2.1.5 on WordPress. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-52489. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Ludovic Riaudel Custom Post Type to Map Store Plugin up to 1.1.0 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2024-53769. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. This affects an unknown part of the file password-recovery.php. The manipulation of the argument username/contactno leads to sql injection. This vulnerability is uniquely identified as CVE-2023-6648. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Разговорный ИИ, мягкие руки и автономное поведение – новый этап роботизации.

流行解压缩软件 WinRAR 释出了 v7.10 正式版，主要变化包括：启用更大的内存页以改进性能、新的设置界面、暗色模式，以及新的隐私控制功能。新隐私功能允许用户调整 Windows Mark-of-the-Web 安全标记，移除可能的敏感数据。Mark-of-the-Web 安全标记被用于标记从 Web 下载的文件，当尝试打开该文件时 Windows 会警告是否确定要运行该文件。WinRAR 7.10 的隐私设置“Zone value only ”（设置—安全）允许用户删除 Mark-of-the-Web 安全标记中可能泄露隐私的元数据如下载位置和 IP 地址。

快速收集脆弱资产：经验分享

A vulnerability was found in P. Roy WP Revisions Manager Plugin up to 1.0.2 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2024-53761. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Jean-Marc Bianca Hotlink2Watermark Plugin up to 0.3.2 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2024-53711. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in ITERAS Plugin up to 1.7.0 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2024-53710. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Ritesh Sanap Advanced What Should We Write Next About Plugin up to 1.0.3 on WordPress. Affected is an unknown function. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2024-53789. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as problematic was found in eDoc Intelligence eDoc Easy Tables Plugin up to 1.29 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2024-53793. The attack can be launched remotely. There is no exploit available.