Play
You must login to view this content
Aggregator
Anthropic: Mythos finds more than 10,000 software flaws in first month
6 days 3 hours ago
Early results show a tenfold jump in bug discovery at some partners, and a widening gap between finding flaws and fixing them.
The post Anthropic: Mythos finds more than 10,000 software flaws in first month appeared first on CyberScoop.
Greg Otto
Play
6 days 3 hours ago
You must login to view this content
cohenido
Play
6 days 3 hours ago
You must login to view this content
cohenido
Play
6 days 3 hours ago
You must login to view this content
cohenido
Play
6 days 3 hours ago
You must login to view this content
cohenido
Play
6 days 3 hours ago
You must login to view this content
cohenido
Play
6 days 3 hours ago
You must login to view this content
cohenido
Физики поймали бабочку размером с нить ДНК. Она сделана из одного электрона и двух атомов
6 days 3 hours ago
Её ждали почти 20 лет. И наконец-то дождались.
CVE-2026-45217 | ThemeHigh Stripe Payment Gateway for WooCommerce Plugin up to 5.0.7 on WordPress authentication bypass (EUVD-2026-31769)
6 days 3 hours ago
A vulnerability classified as critical has been found in ThemeHigh Stripe Payment Gateway for WooCommerce Plugin up to 5.0.7 on WordPress. The impacted element is an unknown function. This manipulation causes authentication bypass using alternate channel.
This vulnerability is handled as CVE-2026-45217. The attack can be initiated remotely. There is not any exploit available.
vuldb.com
CVE-2026-45216 | StoreApps Smart Manager Plugin up to 8.85.0 on WordPress privileges assignment (EUVD-2026-31767)
6 days 3 hours ago
A vulnerability was found in StoreApps Smart Manager Plugin up to 8.85.0 on WordPress and classified as critical. Affected by this issue is some unknown functionality. The manipulation results in incorrect privilege assignment.
This vulnerability is identified as CVE-2026-45216. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2026-45209 | edward_plainview MyCryptoCheckout Plugin up to 2.161 on WordPress authorization (EUVD-2026-31770)
6 days 3 hours ago
A vulnerability has been found in edward_plainview MyCryptoCheckout Plugin up to 2.161 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to missing authorization.
This vulnerability is referenced as CVE-2026-45209. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com
CVE-2025-71310 | GDPR Cookies Module up to 1.3.4 on Backdrop Info content cross site scripting (trib-2025-013 / EUVD-2025-209927)
6 days 3 hours ago
A vulnerability has been found in GDPR Cookies Module up to 1.3.4 on Backdrop and classified as problematic. This vulnerability affects unknown code. This manipulation of the argument Info content causes basic cross site scripting.
The identification of this vulnerability is CVE-2025-71310. It is possible to initiate the attack remotely. There is no exploit available.
The affected component should be upgraded.
vuldb.com
CVE-2026-44410 | ZTE ZXUniPOS NDS-LTE 24.30.40CP02/24.40.40 cryptographic primitive risky implementation (EUVD-2026-31809)
6 days 3 hours ago
A vulnerability classified as problematic has been found in ZTE ZXUniPOS NDS-LTE 24.30.40CP02/24.40.40. Impacted is an unknown function. This manipulation causes use of a cryptographic primitive with a risky implementation.
This vulnerability appears as CVE-2026-44410. The attack may be initiated remotely. There is no available exploit.
vuldb.com
Chinese Threat Actors Ditch Static Phishing Pages for Live Credential Interception
6 days 4 hours ago
Almost all organizations impersonated by Chinese phishing platforms are non-Chinese entities, suggesting operators deliberately avoid domestic targets
在内存天价时代 Meta 更新了 CacheLib 项目
6 days 4 hours ago
Meta 在 2021 年开源了缓存引擎 CacheLib,该项目旨在利用非易失性存储器作为缓存去扩展服务,以抵消不断上涨的 DRAM 成本。该项目在 2024 年 6 月之后就停止了更新,但在 2026 年 5 月 25 日 Meta 再次释出了更新——而今天由于 AI 热 DRAM 价格相比 2021 年几乎是天价。
CVE-2013-10068 | Foxit Reader 5.4.4.1128 npFoxitReaderPlugin.dll memory corruption (EUVD-2013-7278 / EDB-23944)
6 days 4 hours ago
A vulnerability, which was classified as critical, was found in Foxit Reader 5.4.4.1128. The affected element is an unknown function in the library npFoxitReaderPlugin.dll. Such manipulation leads to memory corruption.
This vulnerability is referenced as CVE-2013-10068. It is possible to launch the attack remotely. Furthermore, an exploit is available.
You should upgrade the affected component.
vuldb.com
CVE-2013-10050 | D-Link DIR-300 Rev A/DIR-615 Rev D CGI Endpoint tools_vct.xgi pingIp os command injection (EUVD-2013-7273 / EDB-25024)
6 days 4 hours ago
A vulnerability described as critical has been identified in D-Link DIR-300 Rev A and DIR-615 Rev D. This affects an unknown function of the file tools_vct.xgi of the component CGI Endpoint. Executing a manipulation of the argument pingIp can lead to os command injection. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability appears as CVE-2013-10050. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com
CVE-2012-10027 | WP-Property Plugin up to 1.35.0 on WordPress uploadify.php unrestricted upload (Exploit 18987 / EUVD-2012-6569)
6 days 4 hours ago
A vulnerability categorized as critical has been discovered in WP-Property Plugin up to 1.35.0 on WordPress. Affected by this issue is some unknown functionality of the file uploadify.php. The manipulation results in unrestricted upload. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability was named CVE-2012-10027. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com
CVE-2012-10024 | XBMC Media Center up to 11.0 path traversal (EUVD-2012-6581)
6 days 4 hours ago
A vulnerability was found in XBMC Media Center up to 11.0. It has been declared as critical. This affects an unknown part. The manipulation results in path traversal.
This vulnerability is known as CVE-2012-10024. It is possible to launch the attack remotely. No exploit is available.
It is best practice to apply a patch to resolve this issue.
vuldb.com