Aggregator

Park'N Fly is warning that a data breach exposed the personal and account information of 1 million customers in Canada after hackers breached its network. [...]

Ransomware has rapidly escalated from being a financial nuisance to a significant, multi-dimensiona

Y4tacker2024-08-27 (Updated: 2024-08-27) PHP PHP, 禅道

huoji 域控,活动目录,横向移动 2024-08-27 13 次浏览 0 次点赞本文由 huoji 创作，采用 知识共享署名 3.0，可自由转载、引用，但需署名作者

A vulnerability, which was classified as problematic, was found in Favicon Generator Plugin up to 1.5 on WordPress. Affected is an unknown function of the component File Upload. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2024-7863. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Relevanssi Live Ajax Search Plugin up to 2.4 on WordPress. This issue affects the function WP_Query. The manipulation leads to argument injection. The identification of this vulnerability is CVE-2024-7573. The attack may be initiated remotely. There is no exploit available.

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- --------------------------------------------------

国内高校陆续发布 2024 年度专业调整情况，多所高校宣布将暂停外语专业招生。对外经济贸易大学、北京语言大学暑期发布通告，停止了日语笔译、意大利语口译等多个小语种专业的硕士招生。济南大学5月发布《2023年专业调整情况》，宣布已停招朝鲜语、德语等9个本科专业。同月，沈阳航空航天大学公示的《2024年我校停招专业情况》显示，2024年英语等10个专业已暂停招生。据教育部数据，2018-2022 年间共有 109 所高校撤销了 28 个外语相关专业，其中，日语、英语、朝鲜语专业为撤销学校数量最多的专业。2023 年，中国科学技术大学宣布，拟将英语专业向教育部申请撤销备案。

==========================================================================Ubuntu Security Notice U

The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advi

The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advi

The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advi

© 2024 Packet Storm. All rights reserved.

The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advi

Google Chrome 浏览器今年至今修复了 10 个 0day。其中第 10 个是安全研究员 TheDog 报告的 CVE-2024-7965，是编译器后端在选择要生成的 JIT 编译指令时的一个 bug 导致的，位于 V8 JS 引擎中，远程攻击者可通过特制 HTML 页面利用堆损坏。第九个 0day 是 CVE-2024-7971。Google 证实 CVE-2024-7971 和 CVE-2024-7965 两个漏洞正被利用，但没有披露更多信息。

A vulnerability classified as critical was found in Fortra FileCatalyst Workflow up to 5.1.6 Build 139. This vulnerability affects unknown code. The manipulation leads to sql injection. This vulnerability was named CVE-2024-6632. The attack can be initiated remotely. There is no exploit available.

ドライフラワーみたい

A vulnerability classified as critical has been found in Brain Information Technologies Brain Low-Code up to 2.0.x. This affects an unknown part. The manipulation leads to sql injection. This vulnerability is uniquely identified as CVE-2024-7071. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Fortra FileCatalyst Workflow up to 5.1.6 Build 139. It has been rated as problematic. Affected by this issue is some unknown functionality of the component HSQL Database. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2024-6633. The attack may be launched remotely. There is no exploit available.