Posts of last 24 hours
Geek Out. Level Up
https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458617440&idx=4&sn=6fe4df081c5fe4dbff5ea443956641ab
继各类勒索病毒肆虐政企网络后,一款兼具后门窃密、全盘数据销毁、伪勒索加密三重杀伤能力的新型恶意程序GigaWi
https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458617440&idx=3&sn=fdece75fd5e5f1b13881628e155034f3
技术岗直投
https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458617440&idx=2&sn=fb5883e5f022860ddd1a9a5f886fc64b
看雪论坛作者ID:x0rrrrr
https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458617440&idx=1&sn=b6af25a7cbc9161f1a55e08fb537472d
A vulnerability has been found in wpdevteam BetterDocs Plugin up to 4.6.0 on WordPress and classified as critical. This vulnerability affects unknown code of the component Multilingual Handler. Performing a manipulation of the argument lang results in sql injection.
This vulnerability is reported as CVE-2026-15104. The attack is possible to be carried out remotely. No exploit exists.
https://vuldb.com/vuln/377458
360"仪天阵"护航企业应对Mythos挑战
https://mp.weixin.qq.com/s?__biz=MzA4MTg0MDQ4Nw==&mid=2247586571&idx=1&sn=61f054cce446d2f28dfc381c1e9f1175
https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247506579&idx=1&sn=91e99060ffe9719d45562a11733bdd78
A vulnerability, which was classified as problematic, was found in sovlix GoodMeet Plugin up to 1.1.8 on WordPress. This affects the function reset_credential of the component Credential Management. Such manipulation leads to cross-site request forgery.
This vulnerability is documented as CVE-2026-6440. The attack can be executed remotely. There is not any exploit available.
https://vuldb.com/vuln/377457
A vulnerability, which was classified as problematic, has been found in room34 ICS Calendar Plugin up to 12.0.9 on WordPress. Affected by this issue is some unknown functionality of the component Shortcode Handler. This manipulation of the argument htmltagtitle causes cross site scripting.
This vulnerability is registered as CVE-2026-9838. Remote exploitation of the attack is possible. No exploit is available.
https://vuldb.com/vuln/377456
A vulnerability classified as problematic was found in prasunsen Hostel Plugin up to 1.1.7 on WordPress. Affected by this vulnerability is the function wphostel-book of the component Shortcode Handler. The manipulation of the argument text results in cross site scripting.
This vulnerability is cataloged as CVE-2026-3907. The attack may be launched remotely. There is no exploit available.
https://vuldb.com/vuln/377455