Aggregator

Python-Based “XillenStealer” Campaign Targets Windows Users’ Sensitive Data

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
4 months 4 weeks ago

A sophisticated Python-based information stealer named XillenStealer has emerged as a significant threat to Windows users, designed to harvest sensitive system data, browser credentials, and cryptocurrency wallet information. XillenStealer operates through a comprehensive builder framework called “XillenStealer Builder V3.0,” featuring a Python-based Tkinter GUI that enables threat actors to configure and customize their attacks with […]

The post Python-Based “XillenStealer” Campaign Targets Windows Users’ Sensitive Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

CVE-2025-10602 | SourceCodester Online Exam Form Submission 1.0 /admin/delete_s1.php ID sql injection

VulDB Recent Entries
4 months 4 weeks ago
A vulnerability has been found in SourceCodester Online Exam Form Submission 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/delete_s1.php. Performing manipulation of the argument ID results in sql injection. This vulnerability is identified as CVE-2025-10602. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com

CVE-2025-10601 | SourceCodester Online Exam Form Submission 1.0 /admin/index.php email sql injection

VulDB Recent Entries
4 months 4 weeks ago
A vulnerability, which was classified as critical, was found in SourceCodester Online Exam Form Submission 1.0. Affected is an unknown function of the file /admin/index.php. Such manipulation of the argument email leads to sql injection. This vulnerability is referenced as CVE-2025-10601. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com

CVE-2025-10600 | SourceCodester Online Exam Form Submission 1.0 /register.php img unrestricted upload

VulDB Recent Entries
4 months 4 weeks ago
A vulnerability, which was classified as critical, has been found in SourceCodester Online Exam Form Submission 1.0. This impacts an unknown function of the file /register.php. This manipulation of the argument img causes unrestricted upload. The identification of this vulnerability is CVE-2025-10600. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

AMD 终止自己的 AMDVLK 开源驱动项目,拥抱社区项目 Mesa RADV

不安全
4 months 4 weeks ago
AMD终止其开源驱动项目AMDVLK,转而全力支持社区驱动的Mesa RADV项目。这一决策旨在简化开发流程、强化对开源社区的承诺,并统一Linux平台下的Vulkan驱动战略。Mesa RADV在Linux社区中比AMDVLK更受欢迎,并获得了Valve、Google和Red Hat等公司的支持。

AMD 终止自己的 AMDVLK 开源驱动项目,拥抱社区项目 Mesa RADV

Solidot
4 months 4 weeks ago
AMD 终止自己的 AMDVLK 开源驱动项目,拥抱社区驱动项目 Mesa RADV。这一决定早有先兆:AMD 在今年五月宣布支持 Mesa RADV 驱动。此后它就没有再发布任何新的 AMDVLK 驱动。现在 AMD 正式宣布,为简化开发流程,强化对开源社区的承诺,统一 Linux Vulkan 驱动战略,决定停止 AMDVLK 开源项目,全力支持 RADV 驱动作为 Radeon 显卡官方支持的开源 Vulkan 驱动。Mesa RADV 在 Linux 社区比 AMDVLK 更受欢迎,得到了 Valve、Google 和 Red Hat 等公司的支持。

CVE-2025-9450 | Dassault Systèmes SOLIDWORKS eDrawings up to 2025 JT File Parser uninitialized variable

VulDB Recent Entries
4 months 4 weeks ago
A vulnerability classified as critical was found in Dassault Systèmes SOLIDWORKS eDrawings up to 2025. This affects an unknown function of the component JT File Parser. The manipulation results in use of uninitialized variable. This vulnerability was named CVE-2025-9450. The attack may be performed from remote. There is no available exploit.
vuldb.com

CVE-2025-9449 | Dassault Systèmes SOLIDWORKS eDrawings up to 2025 PAR File Parser use after free

VulDB Recent Entries
4 months 4 weeks ago
A vulnerability classified as critical has been found in Dassault Systèmes SOLIDWORKS eDrawings up to 2025. The impacted element is an unknown function of the component PAR File Parser. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2025-9449. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com

CVE-2025-9447 | Dassault Systèmes SOLIDWORKS eDrawings up to 2025 PAR File Parser out-of-bounds

VulDB Recent Entries
4 months 4 weeks ago
A vulnerability described as problematic has been identified in Dassault Systèmes SOLIDWORKS eDrawings up to 2025. The affected element is an unknown function of the component PAR File Parser. Executing manipulation can lead to out-of-bounds read. This vulnerability is handled as CVE-2025-9447. The attack can be executed remotely. There is not any exploit available.
vuldb.com

CVE-2025-10599 | itsourcecode Web-Based Internet Laboratory Management System 1.0 login.php User::AuthenticateUser user_email sql injection

VulDB Recent Entries
4 months 4 weeks ago
A vulnerability marked as critical has been reported in itsourcecode Web-Based Internet Laboratory Management System 1.0. Impacted is the function User::AuthenticateUser of the file login.php. Performing manipulation of the argument user_email results in sql injection. This vulnerability is known as CVE-2025-10599. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com

FinWise Insider Breach Exposes 700K Customer Records to Former Employee

Cyber Security News
4 months 4 weeks ago

American First Finance, LLC, a Dallas-based financial services firm, suffered a significant insider breach when a recently terminated employee exploited unauthorized access to its production database.  The incident, dubbed the FinWise insider breach, resulted in the exfiltration of sensitive customer records nearly 689,000 names, Social Security numbers, and other personal identifiers via direct SQL queries […]

The post FinWise Insider Breach Exposes 700K Customer Records to Former Employee appeared first on Cyber Security News.

Florence Nightingale

Managed ad