Aggregator

在2025d3ctf的一道web题d3jtar中，过滤了jsp等关键字的黑名单，如何去绕过呢？

本文系统介绍了Struts2框架的架构特点及其安全风险，重点分析了OGNL（Object-Graph Navigation Language）表达式在漏洞利用中的关键作用。由于OGNL具备强大的对象访问与方法调用能力，若开发者未对用户输入进行严格过滤，攻击者即可借此执行恶意代码，从而造成远程代码执行（RCE）等严重后果。文章详细讲解了OGNL的语法机制、上下文实现与在Struts2中的应用方式，并

大量国内正常数字签名被用于传播XtremeRAT远控木马

Currently trending CVE - Hype Score: 4 - The Slider, Gallery, and Carousel by MetaSlider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘aria-label’ parameter in all versions up to, and including, 3.98.0 due to insufficient input sanitization and output escaping. This makes it possible for ...

为了探索K8s Ingress的更佳的利用姿势，深入分析K8s Ingress CVE-2025-24513漏洞，并且举一反三从源码审计了PHP、C、Golang的文件接口源码，总结了这些语言的文件接口在文件穿越场景的利用（进行深入探索，尤其分析PHP文件目录穿越，发现很多人只是看到过没复现成功过就算了）。 最终从优化PoC角度，将PoC改造更为通用、爆破效率更高，进一步提高PoC的成功率。

NIST and the University of Colorado Boulder have created a public service that delivers random numbers using quantum mechanics. Called the Colorado University Randomness Beacon (CURBy), the system offers a daily stream of certifiable random numbers generated through a process that no one can predict or manipulate. Instrumentation for the quantum random number generator (Source: NIST) For security professionals, randomness is essential. But most systems use pseudo-random numbers, which are generated by algorithms and can … More →

The post CURBy: A quantum random number generator you can verify appeared first on Help Net Security.

Meta Platforms on Monday announced that it's bringing advertising to WhatsApp, but emphasized that the ads are "built with privacy in mind." The ads are expected to be displayed on the Updates tab through its Stories-like Status feature, which allows ephemeral sharing of photos, videos, voice notes, and text for 24 hours. These efforts are "rolling out gradually," per the company. The media

Litctf 2025 crypto wp 全解

本文是对《追踪 Android 方法调用 1》所学知识的实践，通过 frida hook `ArtMethod::Invoke`、`ArtInterpreterToInterpreterBridge` 与 `ArtInterpreterToCompiledCodeBridge` 等函数，追踪以下调用关系：- `Java->Java` - `Java-JNI` - `JNI-Java` - `JNI

Cybersecurity threats are growing more complex, and domain-based attacks are at the center of this shift. CSC’s CISO Outlook 2025 report, based on a survey of 300 security leaders, reveals a rising sense of urgency as organizations confront both established and emerging threats. 70 percent of respondents expect an increase in cyber threats in 2025, and 98 percent believe risks will continue rising over the next three years. Domain-related threats, such as cybersquatting, DNS hijacking, … More →

The post CISOs brace for a surge in domain-based cyber threats appeared first on Help Net Security.

A vulnerability was found in Apple macOS. It has been declared as critical. This vulnerability affects unknown code of the component iCloud Link Handler. The manipulation leads to Remote Code Execution. This vulnerability was named CVE-2025-43200. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple watchOS. It has been rated as critical. This issue affects some unknown processing of the component iCloud Link Handler. The manipulation leads to Remote Code Execution. The identification of this vulnerability is CVE-2025-43200. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apple visionOS. Affected is an unknown function of the component iCloud Link Handler. The manipulation leads to Remote Code Execution. This vulnerability is traded as CVE-2025-43200. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apache NuttX RTOS up to 12.8.x. It has been rated as problematic. Affected by this issue is some unknown functionality of the component bdf-converter. The manipulation leads to infinite loop. This vulnerability is handled as CVE-2025-47868. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Apache NuttX RTOS up to 12.8.x. This affects an unknown part of the component xmlrpc. The manipulation leads to buffer overflow. This vulnerability is uniquely identified as CVE-2025-47869. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Projectworlds Life Insurance Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /insertagent.php. The manipulation of the argument agent_id leads to sql injection. This vulnerability is handled as CVE-2025-6133. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been classified as critical. This affects an unknown part of the file /insertClient.php. The manipulation of the argument client_id leads to sql injection. This vulnerability is uniquely identified as CVE-2025-6134. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /insertNominee.php. The manipulation of the argument client_id/nominee_id leads to sql injection. This vulnerability was named CVE-2025-6135. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability has been found in conda-build up to 25.3.x and classified as critical. This vulnerability affects the function eval. The manipulation leads to code injection. This vulnerability was named CVE-2025-32798. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Erlang OTP up to 28.0.1. It has been rated as critical. Affected by this issue is some unknown functionality in the library lib/stdlib/src/zip.erl. The manipulation leads to path traversal. This vulnerability is handled as CVE-2025-4748. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.