Aggregator

#软件资讯 谷歌正在为 Chrome 开发新功能：让 PDF 文件能选择高亮部分生成链接完成快速跳转。此功能的意义在于，其他人点击你分享的链接后会自动打开 PDF 文件并跳转到你选中的

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. 7-Zip Zero-Day Exploit Dropped: A New Playground for Infostealer & Supply Chain Attacks   Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts   The Mac Malware of 2024  Ransomware Vulnerability Matrix Inside […]

SECURITY AFFAIRS MALWARE NEWSLETTE

A vulnerability was found in Adobe Flash Player up to 9.0.124.0. It has been classified as critical. Affected is an unknown function of the component DNS. The manipulation leads to denial of service. This vulnerability is traded as CVE-2007-6019. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

SECURITY AFFAIRS MALWARE NEWSLETTE

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Malicious npm packages target Ethereum developers US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT […]

点击蓝字  关注我们#公众号年度数据报告时光荏苒，不知不觉，2024悄然离去。过去的一年是复旦白泽战队成长最迅速的一年，衷心感谢各位一年来的陪伴。1Part.1粉丝增长步入快车道在过去的一年中，白泽公

复旦白泽团队2024年度报告，请查收~

HomeiOSiPad为什么要每日自拍？听到这三个理由，我心动了｜SelfieStory 自拍照片转延时视频应用

A vulnerability was found in Crossnuke Nukebrowser up to 2.41. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file nukebrowser.php. The manipulation of the argument filhead leads to code injection. This vulnerability is known as CVE-2003-1436. The attack can be launched remotely. Furthermore, there is an exploit available.

JM.SNAPSHOT.PATH and JM.LOG.PATHnacos client log 冲突JM.SNAPSHOT.PATH and JM.LOG.PA

前言服务器到期了才发现博客已经超过2年没有更新了，虽然博客的时代早已过去，但是留下一些记录总归算是积攒一些情怀。恰好腾讯搞活动，重新开了一台3年的轻云服务，把博客和一些零小服务迁过来，一直在用的...

A vulnerability classified as critical has been found in xlock. Affected is an unknown function. The manipulation leads to memory corruption. This vulnerability is traded as CVE-1999-0038. Attacking locally is a requirement. Furthermore, there is an exploit available.

本文同步发表在 HamCQ 论坛：forum.hamcq.cn/d/4271 由于笔者比较社恐且不习惯直接喊话，因此在考 B 之前并未进行太多通联。在考取 B 证后笔者成为了社畜，加上住处电磁环境复杂导致购买了设备之后也没怎么使用过，直到前几天才在学弟的鼓励下开始尝试 FT8 通联，遇到了以下情况： 笔者苦于协谷 X6100 原生固件的不足，也没钱没空间买新的设备，因此希望寻找改进协谷 X6100 固件的方法，在一番搜索过后，笔者找到了协谷 X6100 的替代固件并兴致勃勃地摸索它的功能。笔者希望能趁着这股新鲜劲对业余无线电的一些基础知识和设备使用进行学习，本文则尝试简单介绍一下该替代固件和...

...

本文同步发表在 HamCQ 论坛：https://forum.hamcq.cn/d/4271由于笔者比较社恐且不习惯直接喊话，因此在考 B 之前并未进行太多通联。在考取 B 证后笔者成为了社畜，

A vulnerability classified as critical was found in zhenfeng13 My-Blog 1.0. Affected by this vulnerability is the function upload of the file src/main/java/com/site/blog/my/core/controller/admin/uploadController. java. The manipulation of the argument file leads to unrestricted upload. This vulnerability is known as CVE-2024-13145. The attack can be launched remotely. Furthermore, there is an exploit available.