Aggregator

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

Submit #399540 / VDB-276218

A vulnerability was found in HFO4 shudong-share 2.4.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /includes/fileReceive.php of the component File Extension Handler. The manipulation of the argument file leads to unrestricted upload. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is known as CVE-2024-8338. The attack can be launched remotely. Furthermore, there is an exploit available.

您有一份周报待查收......

Submit #399538 / VDB-276217

A vulnerability was found in Web Directory Free Plugin up to 1.7.2 on WordPress. It has been classified as critical. Affected is the function include. The manipulation leads to path traversal. This vulnerability is traded as CVE-2024-3673. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in ELECOM WAB-I1750-PS and WAB-S1167-PS up to 1.5.10 and classified as problematic. This issue affects some unknown processing of the file menu.cgi. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-42412. The attack may be initiated remotely. There is no exploit available.

Как релиз новой игры привлек внимание хакеров.

A vulnerability has been found in Elecom WRC-X3000GS2-B, WRC-X3000GS2-W and WRC-X3000GS2A-B up to 1.08 and classified as problematic. This vulnerability affects unknown code of the file easysetup.cgi. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-34577. The attack can be initiated remotely. There is no exploit available.

Reading Time: 6 min Master DMARC deployment in 5 steps. Learn to configure SPF/DKIM, analyze reports, and gradually enforce policies.

The post DMARC Deployment Phases: What to Expect and How to Prepare appeared first on Security Boulevard.

Reading Time: 6 minIf you want to enhance your organization’s email security and deliverability,

A vulnerability, which was classified as critical, was found in Elecom WAB-I1750-PS up to 1.5.10. This affects an unknown part of the component Telnet. The manipulation leads to missing authentication. This vulnerability is uniquely identified as CVE-2024-39300. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply restrictive firewalling.

七月榜单终于来啦本月有95位白帽师傅为JSRC提交了漏洞感谢您的付出一起看看榜上有名的师傅们都有谁吧！

月满中秋，礼盒到！

Hackers have been exploiting vulnerabilities in iOS and Google Chrome to target government websites, particularly in Mongolia. Google’s Threat Analysis Group (TAG) observed these attacks, which have been linked to the Russian government-backed actor APT29. The hackers have repeatedly used the same exploits, initially developed by commercial surveillance vendors, to breach security defenses. This article […]

The post Hackers Repeatedly Using Same iOS & Chrome Exploits to Attack Government Websites appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

KCon 2024 圆满落幕！

KCon 2024 圆满落幕！

KCon 2024 圆满落幕！

KCon 2024 圆满落幕！

KCon 2024 圆满落幕！