Aggregator

A vulnerability has been found in Snegurka Referral and Affiliation Program Module up to 3.5.1 on PrestaShop and classified as critical. Affected is the function ReferralByPhoneDefaultModuleFrontController::ajaxProcessCartRuleValidate. This manipulation causes sql injection. This vulnerability appears as CVE-2023-46358. The attacker needs to be present on the local network. There is no available exploit.

A vulnerability was found in jbig2enc 0.28 and classified as critical. The affected element is the function jbig2enc_auto_threshold_using_hash of the file src/jbig2enc.cc. Executing a manipulation can lead to use after free. This vulnerability is tracked as CVE-2023-46362. The attack is only possible within the local network. No exploit exists.

A vulnerability, which was classified as critical, has been found in Artifex jbig2dec 0.20. Affected by this vulnerability is the function jbig2_error of the file /jbig2dec/jbig2.c. Performing a manipulation results in memory corruption. This vulnerability is known as CVE-2023-46361. Remote exploitation of the attack is possible. No exploit is available.

详细分析了最新的CVE-2026-22807

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into executing malicious JavaScript in their browser, allowing attackers to hijack Bitcoin swap transactions and redirect funds to attacker-controlled wallets. [...]

A vulnerability described as problematic has been identified in Unidocs ezPDF DRM Reader and ezPDF Reader 2.0/3.0.0.4 on 32-bit. This affects an unknown part in the library SHFOLDER.dll. Such manipulation leads to uncontrolled search path. This vulnerability is documented as CVE-2026-2516. The attack needs to be performed locally. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability classified as problematic has been found in Open5GS up to 2.7.6. This vulnerability affects the function ogs_gtp2_parse_tft in the library lib/gtp/v2/types.c of the component SMF. Performing a manipulation of the argument pf[0].content.length results in denial of service. This vulnerability is reported as CVE-2026-2517. The attack is possible to be carried out remotely. Moreover, an exploit is present. The project was informed of the problem early through an issue report but has not responded yet.

Код не прошел, зато прошла попытка эмоционального шантажа.

2026 年，AI Agent（智能体）的自主决策能力正成为内网权限控制的新黑洞。本文深入剖析了 Agent 核心架构 ReAct 中的逻辑缺陷，揭示了 LLM 作为“混淆代理”如何被自然语言指令劫持。文章重点展示了针对 PythonREPLTool 的攻击路径，通过本地复现演示了从 Prompt 注入到获取 Root 权限反弹 Shell 的完整 RCE 过程。同时，本文还探讨了多智能体（Mul

mcp服务器开发-漏洞风险分析

A vulnerability identified as problematic has been detected in Yokogawa Electric Vnet-IP Interface Package up to 1.07.00. This vulnerability affects unknown code. This manipulation causes reachable assertion. This vulnerability is registered as CVE-2025-48020. The attack requires access to the local network. No exploit is available.

A vulnerability, which was classified as problematic, was found in RegistrationMagic Plugin up to 6.0.2.1 on WordPress. Affected is an unknown function. Such manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2025-15520. The attack can be launched remotely. No exploit exists. You should upgrade the affected component.

对 1880-2025 年全球平均地表温度的分析显示，过去 30 年全球气温上升在加速，过去 10 年达到了每十年上升近 0.27C。地球暖化加速的一种解释是气溶胶污染减少，气溶胶会反射太阳光，有降温效应，能抵消部分温室气体产生的暖化效应。过去二十年很多国家开始严打气溶胶污染，导致降温效应减少了。然而研究人员认为，过去几年的创纪录高温无法完全用气溶胶和自然变化进行解释。他们发现，地球低空云的覆盖面积下降了，低空云会反射阳光，其面积的减少推动了暖化的加速。低空云的减少部分与气溶胶有关，但也可能是气温上升导致的反馈循环。气温升高会让低层云更难形成。目前创纪录的高温如果主要是气溶胶变化造成的，那么一旦气溶胶污染物降至零，加速升温的趋势会停止，地球将恢复到之前较慢的升温。但如果是由于云层反馈循环造成的，那么升温加速趋势很可能会持续下去，会带来更严重的热浪、风暴和干旱。

Orval MSW Route Path Injection 漏洞挖掘

Currently trending CVE - Hype Score: 5 - Zabbix server can perform command execution for configured scripts. After command is executed, audit entry is added to "Audit Log". Due to "clientip" field is not sanitized, it is possible to injection SQL into "clientip" and exploit time based blind SQL injection.

1 月 20 日公开的 Telnet 高危漏洞 CVE-2026-24061 存在于 GNU InetUtils telnetd 中，已有 10 年历史，CVSS 评分 9.8/10，非常容易被攻击者获取 root 权限。但在漏洞披露前一周，全球的 Telnet 流量就出现断崖式下降。电信运营商应该是提前收到了漏洞预警，提前采取行动防止漏洞利用。数据显示，1 月 14 日 Telnet 会话数在一小时内下降了 65%，两小时内下降了 83%。日均会话数从 12 月 1 日的 91.4 万次降至 1 月 14 日的约 37.3 万次，降幅达 59%。北美一家或多家 Tier 1 级中转服务提供商过滤了 Telnet 协议默认使用的 23 端口。BT、Cox Communications 和 Vultr 在内的 18 家电信运营商的 Telnet 会话数在 1 月 15 日从之前的数十万降至零。

Это не просто вредонос, а целая империя из зараженных серверов.

Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting users into running commands that carry out a Domain Name System (DNS) lookup to retrieve the next-stage payload. Specifically, the attack relies on using the "nslookup" (short for nameserver lookup) command to execute a custom DNS lookup triggered via the Windows

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Stan Ghouls targeting Russia and Uzbekistan with NetSupport RAT Breaking Down ZeroDayRAT – New Spyware Targeting Android and iOS Old-School IRC, New Victims: Inside the Newly Discovered SSHStalker Linux Botnet   Reynolds: Defense Evasion Capability […]