Aggregator

专项漏洞奖励+首爆冲刺奖励叠加+排名奖励额外拿

A vulnerability, which was classified as problematic, has been found in AREOI All Bootstrap Blocks Plugin up to 1.3.19 on WordPress. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-43349. The attack may be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in CryoutCreations Bravada Plugin up to 1.1.2 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-43351. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability has been found in Code Amp Custom Layouts Plugin up to 1.4.11 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-43305. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in weDevs weMail Plugin up to 1.14.5 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-43238. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in WP Chill Allegiant Plugin up to 1.2.7 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-43329. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in WP-Lister Lite for eBay Plugin up to 3.6.0 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-43306. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Gutentor Gutenberg Blocks Plugin up to 3.3.5 on WordPress. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-43308. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Ajsquare Free Polling Script. Affected by this issue is some unknown functionality. The manipulation leads to improper authentication. This vulnerability is handled as CVE-2008-7046. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in CleverSoft Clever Addons for Elementor Plugin up to 2.2.0 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-43324. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as problematic was found in Gordon Böhme & Antonio Leutsch Structured Content Plugin up to 1.6.2 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-43307. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Organic Themes GivingPress Lite Plugin up to 1.8.6 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-43352. The attack may be launched remotely. There is no exploit available.

Инновационная архитектура преодолевает границы аппаратных платформ.

Sungrowが提供する複数の製品には、複数の脆弱性が存在します。

微软声明，今年 1 月 29 日释出的 Windows 预览更新 KB5050092 会导致部分 USB 打印机打印随机文本。问题影响 Windows 10 v22H2 和 Windows 11 v22H2 以及 23H2，最新释出的 Windows 11 v24H2 不受影响。微软表示，安装更新之后，连接支持 USB Print 和 IPP Over USB 协议的双模打印机可能会遇到问题，打印机可能会打印包括网络命令和不寻常字符的随机文本和数据。打印的文本通常以 POST /ipp/print HTTP/1 作为标头。

Threat researchers at Proofpoint are currently tracking two sophisticated and highly targeted cyber-attack campaigns that are utilizing OAuth redirection mechanisms to compromise user credentials. These attacks combine advanced brand impersonation techniques with malware proliferation, focusing on Microsoft 365-themed credential phishing designed to facilitate account takeovers (ATOs), as per a report shared in the platform, X. […]

The post New Microsoft 365 Attack Leverages OAuth Redirection for Credential Theft appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Users searching for pirated software are the target of a new malware campaign that delivers a previously undocumented clipper malware called MassJacker, according to findings from CyberArk. Clipper malware is a type of cryware (as coined by Microsoft) that's designed to monitor a victim's clipboard content and facilitate cryptocurrency theft by substituting copied cryptocurrency wallet addresses

«Сначала выучи, потом спрашивай» — неожиданное наставление от нейросети.

A team successfully decrypted an instance of the Akira ransomware on Linux/ESXi systems without succumbing to the hackers’ demands. This achievement not only underscores the ingenuity of cybersecurity experts but also serves as a powerful message to those who rely on extorting from vulnerable businesses and individuals. The Akira ransomware, known for its complex encryption […]

The post Decrypting Akira Ransomware on Linux/ESXi Without Paying Hackers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.