Aggregator

关键词Cisco思科在今年 10 月初遭到黑客组织 IntelBroker 入侵，公司内部大量机密文件遭到泄露，涉及思科公司 GitHub 和 GitLab 项目、源代码、机密设计文件、产品文件、凭证

关键词摄像头入侵12 月 25 日，甘肃兰州一女子称家里的监控在晚上突然传出陌生人喊话，" 转过来 "，当事人称，这个监控是办理宽带时赠送的，当天刚装上。听到喊声后，她立刻拔掉了监控并报警。该女子透露

关键词贩卖个人信息、木马随着电子商务、视频直播等互联网新业态的发展，侵犯公民个人信息、黑客攻击破坏、网络水军、网络黑产等网络违法犯罪成为影响网络空间安全稳定的突出风险。近日，北京海淀警方以开展“冬季行

掌握关键取证技能

看雪论坛作者ID：xi@0ji233

A vulnerability classified as problematic has been found in neomail 1.29. Affected is an unknown function of the file neomail.pl. The manipulation of the argument sessionid leads to basic cross site scripting. This vulnerability is traded as CVE-2006-2138. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

WebKraze,Vibgyor Media Web Application Union-based Sql Injection# Exploit Title: WebKraze,Vibgyor

IBMi Navigator Server Side Request Forgery (SSRF)[+] Credits: John Page (aka hyp3rlinx)[+]

IBMi Navigator HTTP Security Token Bypass[+] Credits: John Page (aka hyp3rlinx)[+] Website

A vulnerability was found in Alienvault USM and OSSIM up to 5.3.4. It has been declared as problematic. This vulnerability affects unknown code of the component NfSen Socket Handler. The manipulation leads to improper access controls. This vulnerability was named CVE-2017-6970. Attacking locally is a requirement. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple Mac OS X 10.9. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2013-6799. Attacking locally is a requirement. Furthermore, there is an exploit available.

2023-12-29

Обещания денег, успеха и «крутых тачек» стали главной рекламной стратегией группы.

A vulnerability was found in OpenSSL 1.0.1s/1.0.2g and classified as critical. This issue affects some unknown processing of the file crypto/evp/e_aes_cbc_hmac_sha1.c of the component AES-NI CBC MAC Check. The manipulation leads to cryptographic issues. The identification of this vulnerability is CVE-2016-2107. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Zoho ManageEngine Netflow Analyzer up to 9.1. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument schFilePath leads to path traversal. This vulnerability is handled as CVE-2014-5445. The attack may be launched remotely. Furthermore, there is an exploit available.