Aggregator

A vulnerability described as problematic has been identified in Apache OFBiz up to 24.09.05. Impacted is an unknown function. Executing a manipulation can lead to improper input validation. This vulnerability is registered as CVE-2026-31378. The attack requires access to the local network. No exploit is available. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in Apache OFBiz up to 24.09.05. The affected element is an unknown function of the component Expression Language Statement Handler. The manipulation leads to improper neutralization of special elements used in an expression language statement. This vulnerability is documented as CVE-2026-31380. The attack can be initiated remotely. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Apache OFBiz up to 24.09.05. The impacted element is an unknown function. The manipulation results in improper access controls. This vulnerability is reported as CVE-2026-31388. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in Apache OFBiz up to 24.09.05. It has been rated as critical. This vulnerability affects unknown code of the component Content Component Operation Handler. This manipulation causes server-side request forgery. The identification of this vulnerability is CVE-2026-29226. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.

A vulnerability categorized as problematic has been discovered in Apache OFBiz up to 24.09.05. This issue affects some unknown processing. Such manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2026-31379. It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability marked as critical has been reported in Apache OFBiz up to 24.09.05. The impacted element is an unknown function. The manipulation leads to improper authentication. This vulnerability is listed as CVE-2026-31387. The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.

Привычный поиск всё чаще становится частью чужого сценария.

​智能开始非线性增长，AI 企业的底层逻辑正被改写。

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

Vulnerability / Web SecurityA maximum-severity security vulnerability impacting LiteSpeed User-End

A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates to an instance of incorrect privilege assignment that an attacker could abuse to run arbitrary scripts with elevated permissions. "Any cPanel user (including an attacker or a compromised account) may

活动，“笑傲内核”小组核心成员陈雪原将代表小组出席活动，进行主题分享《DMA Buffer Cache同步的批处理优化及高通平台的实践》。2026年5月30日，深圳《

Vulnerability / Website SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) h

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability in question is CVE-2026-9082 (CVSS score: 6.5), an SQL injection vulnerability affecting all supported versions of Drupal Core. "Drupal Core

根据《全国人口普查条例》及国务院办公厅要求，中国于2025年11月1日开展了全国1%人口抽样调查。公报公布了此次调查推算的人口主要数据：全国人口为140545万人，男性占51.03%，女性占48.97

New StorybyAstounding StoriesbyAstounding Stories@astoundingstoriesDare to dream. Dare to go where

A vulnerability, which was classified as critical, was found in SourceCodester Hospitals Patient Records Management System 1.0. Impacted is an unknown function of the file /admin/patients/view_history.php. The manipulation of the argument ID results in sql injection. This vulnerability is cataloged as CVE-2026-9342. The attack may be launched remotely. Furthermore, there is an exploit available.

Видеокарта Lisuan LX 7G100 получила 12 ГБ памяти и собственную архитектуру, но драйверы и производительность пока ограничивают её возможности.

Submit #812834 / VDB-365305