Posts of last 24 hours
A vulnerability categorized as critical has been discovered in MervinPraison PraisonAI up to 4.6.77. The affected element is the function create_collection of the component Knowledge-Store Backend. Executing a manipulation of the argument dimension can lead to injection.
This vulnerability is tracked as CVE-2026-60090. The attack can be launched remotely. No exploit exists.
https://vuldb.com/vuln/377813
A vulnerability labeled as problematic has been found in MervinPraison PraisonAI up to 4.6.77. This affects the function validate of the file outside_secret.txt of the component File Path. The manipulation of the argument path results in path traversal.
This vulnerability is cataloged as CVE-2026-60088. The attack must be initiated from a local position. There is no exploit available.
https://vuldb.com/vuln/377815
A vulnerability was found in Capgo up to 12.128.1. It has been classified as problematic. This vulnerability affects the function find_apikey_by_value of the file /rest/v1/rpc/find_apikey_by_value of the component API Key Management. This manipulation of the argument Value causes information disclosure.
The identification of this vulnerability is CVE-2026-56303. It is possible to initiate the attack remotely. There is no exploit available.
https://vuldb.com/vuln/377810
A vulnerability described as problematic has been identified in Cap-go up to 12.128.1. Affected is the function transfer_app of the component RPC. Such manipulation of the argument app leads to information disclosure.
This vulnerability is documented as CVE-2026-56296. The attack can be executed remotely. There is not any exploit available.
https://vuldb.com/vuln/377817
A vulnerability classified as problematic has been found in Capgo up to 12.128.11. Affected by this vulnerability is an unknown functionality of the component Plan Valid Calculation. Performing a manipulation results in authorization bypass.
This vulnerability is reported as CVE-2026-56240. The attack is possible to be carried out remotely. No exploit exists.
https://vuldb.com/vuln/377818
Reflect Orbital рассчитывает создать световое пятно диаметром около пяти километров и яркостью, сопоставимой со светом полной Луны.
https://www.securitylab.ru/news/574756.php
Одного короткого сообщения хватило, чтобы навсегда изменить распространение файлов в интернете.
https://www.securitylab.ru/news/574762.php
奇安信发布5款AI安全新品,亚信Physical AI三大产品发布,可信华泰发布可信计算大模型,龙脉科技发布抗量子产品。
https://mp.weixin.qq.com/s?__biz=MzUyMDQ4OTkyMg==&mid=2247553990&idx=1&sn=a14b8e7e2cb57a10bad61df7d43efdd8
智能体完全脱离人工限速,收到告警后自动多轮循环:调取日志、调用 API、分析载荷、持续喂数据
https://mp.weixin.qq.com/s?__biz=MzkxNzA3MTgyNg==&mid=2247543481&idx=1&sn=f59b90bb981f186374715bdc7fc4e3a7
1587 年 10 月,意大利托斯卡纳大公弗朗切斯科·德·美第奇因高热不治而亡。接诊医生初步判定死因是疟疾,但很快坊间流言四起,不少人猜测他是遭心怀嫉妒的弟弟费迪南多下毒谋害。通过分析包括弗朗切斯科在内的同期古人类 DNA,科学家证实疟疾正是夺走其性命的元凶。研究中分析的更多古基因组数据,也进一步揭示了疟疾如何肆虐文艺复兴时期的欧洲大陆。研究团队提取了弗朗切斯科的 3 根肋骨、红衣主教乔瓦尼·德·美第奇的一根肋骨的 DNA。同时研究人员采集了欧洲、亚洲、美洲多地出土遗骸的 9 份已知疟疾阳性古 DNA 样本,以此精准锁定致使美第奇家族族人死亡的疟原虫毒株类型。基因检测分析显示,弗朗切斯科的遗骸中检出了恶性疟原虫与三日疟原虫这两种疟疾的线粒体 DNA,证实其生前确实感染疟疾。而乔瓦尼的遗骸中,检出了携带两种全新突变的恶性疟原虫线粒体 DNA,是一种从未被发现的致命新型变异毒株。
https://www.solidot.org/story?sid=84813