Aggregator
CVE-2025-11449 | ServiceNow AI Platform cross site scripting (KB2552817)
CVE-2025-11570 | drupal-pattern-lab unified-twig-extensions up to 0.0.0/1.1.1 cross site scripting
CVE-2025-11569 | cross-zip zipSync/unzipSync path traversal (SNYK-JS-CROSSZIP-6105396)
CVE-2025-61871 | Buffalo NAS Navigator2 up to 3.11.x on Windows Service unquoted search path
CVE-2025-61928 | better-auth Better Auth up to 1.3.25 /api/auth/api-key/create improper authorization (GHSA-99h5-pjcv-gr6v)
CVE-2016-15047 | AVTECH IP Camera/NVR/and DVR Devices CloudSetup.cgi exefile os command injection (EDB-40500)
October 2025 Patch Tuesday forecast: The end of a decade with Microsoft
A lot of classic software is reaching end-of-life (EOL) this month. Windows 10, Office 2016 and Exchange Server 2016 have survived after nearly a decade of service. Not far behind, after six years in existence, comes the end of Office 2019 and Exchange Server 2019. While this Patch Tuesday may be cause for celebration at Microsoft with the final updates for these products, I hope you’ve been following this closely and have already migrated to … More →
The post October 2025 Patch Tuesday forecast: The end of a decade with Microsoft appeared first on Help Net Security.
CVE-2025-61926 | ossf allstar prior 0.0.0-20250721181116-e004ecb540d6 Reviewbot variable initialization (GHSA-33f4-mjch-7fpr)
14 октября 2025: Microsoft дала 3 варианта действий, но лишь 1 продлит жизнь Windows 10
CVE-2025-61783 | python-social-auth social-app-django up to 5.5.x Authentication Service associate_by_email incorrect implementation of authentication algorithm (ID 220)
黑客入侵 SonicWall 云防火墙备份系统
黑客入侵 SonicWall 云防火墙备份系统
CVE-2025-11549 | Tenda W12 3.0.0.6(3948) HTTP Request /goform/modules wifiMacFilterSet mac stack-based overflow (EUVD-2025-33407)
CVE-2025-11550 | Tenda W12 3.0.0.6(3948) HTTP Request /goform/modules wifiScheduledSet null pointer dereference
CVE-2025-35051 | Newforma Project Center 2024.3 NPCS Endpoint /ProjectCenter.rem deserialization
CVE-2025-11530 | code-projects Online Complaint Site 1.0 /cms/admin/state.php state sql injection
What Is Credential Harvesting? Risks and Prevention Tips
Understand and stop credential harvesting. Explore how attacks happen, the risks to your data, the warning signs, and crucial security steps you can take.
The post What Is Credential Harvesting? Risks and Prevention Tips appeared first on Security Boulevard.