Aggregator
CVE-2007-2594 | phpMyPortal 3.0.0 Rc3 inc/articles.inc.php GLOBALS[CHEMINMODULES] file inclusion (EDB-3879 / XFDB-34186)
4 months ago
A vulnerability, which was classified as critical, has been found in phpMyPortal 3.0.0 Rc3. This issue affects some unknown processing of the file inc/articles.inc.php. The manipulation of the argument GLOBALS[CHEMINMODULES] leads to file inclusion.
The identification of this vulnerability is CVE-2007-2594. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
RansomHub claims Kawasaki cyberattack, threatens to leak stolen data
4 months ago
Kawasaki Motors Europe has announced that it's recovering from a cyberattack that caused service disruptions as the RansomHub ransomware gang threatens to leak stolen data. [...]
Bill Toulas
Миллиардер из Камбоджи оказался под санкциями за мутные схемы с криптовалютой
4 months ago
Шокирующая правда о том, что на самом деле скрывается за онлайн-мошенничествами.
CVE-2007-2608 | Miplex2 Alpha 1 smartyfu.class.php system[smarty][dir] file inclusion (EDB-3878 / XFDB-34172)
4 months ago
A vulnerability was found in Miplex2 Alpha 1. It has been declared as critical. Affected by this vulnerability is an unknown functionality in the library lib/smarty/smartyfu.class.php. The manipulation of the argument system[smarty][dir] leads to file inclusion.
This vulnerability is known as CVE-2007-2608. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Top Phishing Techniques
4 months ago
Phishing in red teaming involves simulating realistic attacks that exploit human vulnerabilities to gain unauthorized access to systems or sensitive information. These methods may include spear-phishing, where highly targeted emails are sent to speci...
Reza Rashidi
【情报】美国推动澳大利亚、日本做战争准备
4 months ago
网络安全巨头 Fortinet 披露数据泄露事件
4 months ago
安全客
爱尔兰数据保护监管机构将调查谷歌人工智能
4 months ago
安全客
远程代码执行漏洞:Veeam与SonicWall发布重要安全公告
4 months ago
安全客
Selenium Grid 配置不当引发加密货币挖矿与代理劫持
4 months ago
安全客
“Hadooken”恶意软件以 Oracle 的 WebLogic 服务器为目标
4 months ago
安全客
CVE-2014-6702 | StarSat International 1.41.54.9222 X.509 Certificate cryptographic issues (VU#582497)
4 months ago
A vulnerability was found in StarSat International 1.41.54.9222. It has been classified as critical. This affects an unknown part of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues.
This vulnerability is uniquely identified as CVE-2014-6702. Access to the local network is required for this attack to succeed. There is no exploit available.
vuldb.com
DeFi 协议 DittoETH 补丁中发现大规模折扣费漏洞
4 months ago
安全客
新型Vo1d恶意软件感染全球197个国家的130万台安卓电视盒
4 months ago
安全客
GitLab 修补了允许未经授权执行流水线作业的关键漏洞
4 months ago
安全客
新型安卓恶意软件 “Ajina.Banker ”利用Telegram渠道传播钓鱼页面与窃取2FA信息
4 months ago
安全客
CVE-2022-3459 | WooCommerce Multiple Free Gift Plugin up to 1.2.3 on WordPress improper authorization
4 months ago
A vulnerability classified as critical has been found in WooCommerce Multiple Free Gift Plugin up to 1.2.3 on WordPress. This affects an unknown part. The manipulation leads to improper authorization.
This vulnerability is uniquely identified as CVE-2022-3459. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-8271 | FOX Plugin up to 1.4.2.1 on WordPress Shortcode code injection
4 months ago
A vulnerability was found in FOX Plugin up to 1.4.2.1 on WordPress. It has been rated as critical. Affected by this issue is some unknown functionality of the component Shortcode Handler. The manipulation leads to code injection.
This vulnerability is handled as CVE-2024-8271. The attack may be launched remotely. There is no exploit available.
vuldb.com
全国政协主席会议成员调研360集团 鼓励企业加强“卡脖子”技术攻关
4 months ago
安全客