Aggregator

A vulnerability was found in code-projects Inventory Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /php_action/removeUser.php. The manipulation of the argument userid leads to sql injection. The identification of this vulnerability is CVE-2025-6901. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in code-projects Inventory Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /php_action/editUser.php. The manipulation of the argument edituserName leads to sql injection. This vulnerability is traded as CVE-2025-6902. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Today, CISA, in collaboration with the Federal Bureau of Investigation (FBI), the Department of Defense Cyber Crime Center (DC3), and the National Security Agency (NSA), released a Fact Sheet urging organizations to remain vigilant against potential targeted cyber operations by Iranian state-sponsored or affiliated threat actors. 

Over the past several months, there has been increasing activity from hacktivists and Iranian government-affiliated actors, which is expected to escalate due to recent events. These cyber actors often exploit targets of opportunity based on the use of unpatched or outdated software with known Common Vulnerabilities and Exposures or the use of default or common passwords on internet-connected accounts and devices.

At this time, we have not seen indications of a coordinated campaign of malicious cyber activity in the U.S. that can be attributed to Iran. However, CISA, FBI, DC3, and NSA strongly urge critical infrastructure asset owners and operators to implement the mitigations recommended in the joint Fact Sheet, which include: 

• Identifying and disconnecting operational technology and industrial control systems devices from the public internet,
• Protecting devices and accounts with strong, unique passwords,
• Applying the latest software patches, and
• Implementing phishing-resistant multifactor authentication for access to OT networks.

Review the joint Fact Sheet: Iranian Cyber Actors May Target Vulnerable US Networks and Entities of Interest and act now to understand the Iranian state-backed cyber threat, assess and mitigate cybersecurity weaknesses, and review and update incident response plans to strengthen your network against malicious cyber actors. 

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. 

•  CVE-2025-6543 Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. 

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information. 

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria. 

MistTrack Team 在 Q2 季度协助 11 个被盗客户成功冻结/追回约 1,195 万美元的资金。

Что скрывает атака на Resupply за ширмой 'простой' ошибки?

A vulnerability classified as critical was found in D-Link DI-7300G+ 19.12.25A1. Affected by this vulnerability is an unknown functionality of the file httpd_debug.asp. The manipulation of the argument Time leads to os command injection. This vulnerability is known as CVE-2025-6897. Access to the local network is required for this attack. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in D-Link DI-7300G+ 19.12.25A1. Affected by this issue is some unknown functionality of the file in proxy_client.asp. The manipulation of the argument proxy_srv/proxy_lanport/proxy_lanip/proxy_srvport leads to os command injection. This vulnerability is handled as CVE-2025-6898. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in D-Link DI-7300G+ and DI-8200G 17.12.20A1/19.12.25A1. This affects an unknown part of the file msp_info.htm. The manipulation of the argument flag/cmd/iface leads to os command injection. This vulnerability is uniquely identified as CVE-2025-6899. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in code-projects Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-book.php. The manipulation of the argument image leads to unrestricted upload. This vulnerability was named CVE-2025-6900. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Daily Expense Manager 1.0 and classified as problematic. This issue affects some unknown processing of the file /login.php. The manipulation of the argument Username leads to cross site scripting. The identification of this vulnerability is CVE-2025-40733. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Daily Expense Manager 1.0. It has been classified as problematic. Affected is an unknown function of the file /register.php. The manipulation of the argument password/confirm_password leads to cross site scripting. This vulnerability is traded as CVE-2025-40734. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Ricoh Streamline NX. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component SLNX Help Documentation. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2025-41439. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in Delta Electronics DTM Soft up to 1.6.0.0. It has been rated as very critical. Affected by this issue is some unknown functionality of the component Project File Parser. The manipulation leads to deserialization. This vulnerability is handled as CVE-2025-53415. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical has been found in ifm electronic ifm Smart PLC AC4xxS up to 6.1.8. This affects an unknown part of the component Endpoint. The manipulation leads to missing authentication. This vulnerability is uniquely identified as CVE-2024-8419. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Garak - 是英伟达开源的大语言模型脆弱性扫描器，今天让我们来学习他。

Over 1,200 Citrix NetScaler ADC and NetScaler Gateway appliances exposed online are unpatched against a critical vulnerability believed to be actively exploited, allowing threat actors to bypass authentication by hijacking user sessions. [...]

Cato Networks has raised $359 million in a late-stage funding round, bringing its total valuation to $4.8 billion. The company, which provides a secure networking platform built entirely in the cloud, says the money will support its product development, AI capabilities, and global expansion. The new investment is intended to accelerate development of Cato’s AI-driven SASE (Secure Access Service Edge) platform. The company also plans to use the funds to expand its global operations and … More →

The post Cato Networks raises $359 million to redefine enterprise security appeared first on Help Net Security.

The ban on Hikvision products follows a national security review under the Investment Canada Act

A vulnerability classified as critical was found in code-projects Staff Audit System 1.0. This vulnerability affects unknown code of the file /update_index.php. The manipulation of the argument updateid leads to sql injection. This vulnerability was named CVE-2025-6883. The attack can be initiated remotely. Furthermore, there is an exploit available.