Aggregator

A vulnerability was found in OpenKM 5.1.7/5.1.8 and classified as problematic. This issue affects some unknown processing. The manipulation of the argument script leads to cross-site request forgery. The identification of this vulnerability is CVE-2012-2316. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in tcpdump up to 4.9.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file print-l2tp.c of the component L2TP Parser. The manipulation leads to memory corruption. This vulnerability is known as CVE-2017-13006. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Remember Me Controls Plugin up to 2.0.1 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2024-7415. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as critical was found in Image Optimizer, Resizer and CDN Plugin up to 7.2.7 on WordPress. Affected by this vulnerability is the function sirv_save_prevented_sizes. The manipulation leads to missing authorization. This vulnerability is known as CVE-2024-8480. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in WP ULike Plugin up to 4.7.2.0 on WordPress. This affects an unknown part of the component User Display Name Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-6792. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in LifterLMS Plugin up to 7.7.5 on WordPress. This vulnerability affects unknown code. The manipulation leads to sql injection. This vulnerability was named CVE-2024-7349. The attack can be initiated remotely. There is no exploit available.

一个玩微信的工具。更多介绍见：WeChatFerry: 一个玩微信的工具。免责声明【必读】本工具仅供学习和技术研究使用，不得用于任何商业或非法行为，否则后果自负。本工具的作者不对本工具的安全性

由安全极客、Wisemodel社区、InForSec网络安全研究国际学术论坛和海升集团联合主办的“AI+Security”系列第3期：AI 安全智能体，重塑安全团队工作范式线下活动将于2024年9月11日举行，欢迎大家报名参会！

一周情报速览~

抽个粉丝福利，提前祝大家中秋快乐！

NASA 宣布波音 Starliner 飞船已返回地面，正运往佛罗里达的肯尼迪太空中心进行检查。Starliner 于 6 月 5 日从佛罗里达卡纳维拉尔角太空军基地发射升空，这是它的第三次轨道飞行，原计划在轨八天，然而飞船被发现氦气泄漏以及反应控制推进器存在问题，在数周的研究测试之后，NASA 决定让两名 Starliner 宇航员 Butch Wilmore 和 Suni Williams 留在空间站，飞船于美国时间 9 月 6 日 10:01 p.m. MDT 无人返回，成功着陆在 新墨西哥州白沙太空港。两名宇航员将于 2025 年 2 月搭乘 SpaceX Crew-9 飞船返回。

Вдоль невидимых границ обнаружены новые космические объекты.

这次就只谈抽奖

Платформа избавляется от проблемных функций и вводит новые.