全栈信息系统安全指南
全栈安全保护软件应用的每一层,包括前端、后端、基础设施和网络。
Aggregator
CVE-2024-1744 | Ariva Computer Accord ORS up to 7.3.2.0 information disclosure
5 months ago
A vulnerability, which was classified as problematic, was found in Ariva Computer Accord ORS up to 7.3.2.0. This affects an unknown part. The manipulation leads to information disclosure.
This vulnerability is uniquely identified as CVE-2024-1744. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-44000: популярный плагин для WordPress вновь оказался под ударом
5 months ago
Как всего одна неверная настройка может поставить ваш сайт под угрозу?
CVE-2017-13804 | Apple macOS up to 10.13.1 StreamingZip input validation (HT208221 / Nessus ID 104387)
5 months ago
A vulnerability classified as critical has been found in Apple macOS up to 10.13.1. This affects an unknown part of the component StreamingZip. The manipulation leads to improper input validation.
This vulnerability is uniquely identified as CVE-2017-13804. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Prominente rol Koninklijke Marine bij Wereldhavendagen Rotterdam
5 months ago
De Wereldhavendagen in Rotterdam zijn begonnen. Ook bij deze 47e editie speelt de Koninklijke Marine een prominente rol. Bezoekers krijgen de kans een kijkje te nemen op marineschepen en deel te nemen aan militaire activiteiten. Dat kan tot en met zondag.
CVE-2024-8468 | PHPGurukul Job Portal 1.0 /jobportal/index.php search sql injection
5 months ago
A vulnerability classified as critical has been found in PHPGurukul Job Portal 1.0. Affected is an unknown function of the file /jobportal/index.php. The manipulation of the argument search leads to sql injection.
This vulnerability is traded as CVE-2024-8468. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-8466 | PHPGurukul Job Portal 1.0 controller.php CATEGORY sql injection
5 months ago
A vulnerability classified as critical was found in PHPGurukul Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /jobportal/admin/category/controller.php. The manipulation of the argument CATEGORY leads to sql injection.
This vulnerability is known as CVE-2024-8466. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-8471 | PHPGurukul Job Portal 1.0 /jobportal/process.php JOBID/USERNAME cross site scripting
5 months ago
A vulnerability, which was classified as problematic, has been found in PHPGurukul Job Portal 1.0. Affected by this issue is some unknown functionality of the file /jobportal/process.php. The manipulation of the argument JOBID/USERNAME leads to cross site scripting.
This vulnerability is handled as CVE-2024-8471. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-8472 | PHPGurukul Job Portal 1.0 /jobportal/index.php cross site scripting
5 months ago
A vulnerability, which was classified as problematic, was found in PHPGurukul Job Portal 1.0. This affects an unknown part of the file /jobportal/index.php. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-8472. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-8473 | PHPGurukul Job Portal 1.0 login.php user_email cross site scripting
5 months ago
A vulnerability has been found in PHPGurukul Job Portal 1.0 and classified as problematic. This vulnerability affects unknown code of the file /jobportal/admin/login.php. The manipulation of the argument user_email leads to cross site scripting.
This vulnerability was named CVE-2024-8473. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-44587 | itsourcecode Alton Management System 1.0 /noncombo_save.php menu sql injection
5 months ago
A vulnerability was found in itsourcecode Alton Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /noncombo_save.php. The manipulation of the argument menu leads to sql injection.
This vulnerability is traded as CVE-2024-44587. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-30051: новый вектор атаки на Windows через DirectComposition
5 months ago
Один неверный шаг – и система переходит под полный контроль злоумышленников.
Munitie en ondersteuningsmaterialen voor Oekraïense F-16’s
5 months ago
Nederland levert onderhouds- en instandhoudingsmaterialen voor de Oekraïense F-16’s. Verder zorgt ons land voor lucht-luchtraketten die de gevechtstoestellen kunnen gebruiken om het Oekraïense luchtruim te verdedigen. Dat maakte minister van Defensie Ruben Brekelmans bekend tijdens een vergadering van de Ukraine Defense Contact Group (UDCG). Die was vandaag op luchtmachtbasis Ramstein in Duitsland.
Латинская Америка в осаде: Mekotio и BBTok захватывают устройства в регионе
5 months ago
Даже опытные специалисты не всегда распознают новые банковские трояны.
前沿 | 欧盟开发、运用生成式人工智能系统中的数据保护体系概览
5 months ago
欧盟作为人工智能的积极开发者和运用者,对生成式人工智能中的数据保护问题进行了探索,并颁布了一系列法案和指南,形成了全方位、多层次、重实效的数据保护模式。
国际 | 美特种部队演练“网络入侵行动”
5 months ago
当前,美陆军特种部队正从传统的反恐作战向更高级别的作战模式转变,网络入侵及相关情报收集手段逐渐成为其关注的重点。通过结合网络攻击、电子战系统及信号情报系统,美陆军特种部队能够为多种作战任务提供更广泛的支持。
关注 | 2024外滩大会:WDTA发布首个大模型供应链安全领域的国际标准
5 months ago
9月6日上午,在2024Inclusion·外滩大会“以AI守护AI,大模型时代的攻守之道”论坛上,WDTA世界数字技术院正式发布国际标准《大模型供应链安全要求》。
关注 | 数字化带来隐私保护挑战,2024外滩大会热议分布式可信认证体系
5 months ago
9月6日上午,2024Inclusion·外滩大会上,由密码科技国家工程研究中心和IIFAA互联网可信认证联盟联合主办的《未来的可信认证体系如何守护“数字的我”》论坛召开。
发布 | 中国信通院发布《新质生产力研究报告(2024年)》(附下载)
5 months ago
2024年9月6日,中国信息通信研究院发布《新质生产力研究报告(2024年)——从数字经济视角解读》,聚焦新质生产力培育壮大的关键问题,系统解读数字经济对培育壮大新质生产力的支撑作用。
聚焦 | 2024外滩大会· 科技伦理见解论坛在沪举行
5 months ago
论坛主题为“以善治促‘善智’,让AI更负责任”