Aggregator

快速浏览！2025.9.15—9.21安全动态周回顾。

HybridPetya的出现与BlackLotus、BootKitty、Hyper-V后门等案例一样，再次证明具备“安全启动绕过”功能的UEFI引导工具包（bootkit）已构成真实威胁。

当前网络环境出现异常状态，需完成验证后方可继续访问相关内容或服务。

A vulnerability described as critical has been identified in Francisco Burzi PHP-Nuke. The affected element is an unknown function. Executing manipulation of the argument querylang can lead to sql injection. This vulnerability appears as CVE-2005-0999. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability identified as problematic has been detected in Francisco Burzi PHP-Nuke. This impacts an unknown function of the component Downloads Module. The manipulation of the argument lid leads to basic cross site scripting. This vulnerability is listed as CVE-2005-1027. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability, which was classified as critical, has been found in PHP-Fusion up to 6.00.200. Affected is an unknown function of the file ratings_include.php. This manipulation of the argument ratings causes sql injection. This vulnerability appears as CVE-2005-4517. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability was found in PHP-Fusion 5.0 and classified as problematic. Impacted is an unknown function of the file administration/db_backups of the component Administration. Executing manipulation can lead to information disclosure. The identification of this vulnerability is CVE-2005-2075. The attack may be launched remotely. Furthermore, there is an exploit available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, was found in PHP-Fusion 6.00.109. Impacted is an unknown function of the file messages.php. Such manipulation of the argument msg_send leads to sql injection. This vulnerability is traded as CVE-2005-3157. The attack may be launched remotely. Furthermore, there is an exploit available. You should upgrade the affected component.

A vulnerability marked as critical has been reported in PHP-Fusion 6.00.109. This vulnerability affects unknown code of the file messages.php. This manipulation of the argument srch_text causes sql injection. This vulnerability appears as CVE-2005-4005. The attack may be initiated remotely. In addition, an exploit is available.

微软开始向 Windows 11 用户推送游戏助手 Gaming Copilot 的 Beta 版本，中国地区除外。Gaming Copilot 还将在下个月提供给 Xbox 移动应用用户。要使用 Gaming Copilot，用户需要安装 Xbox PC app，使用快捷键 Windows + G 打开 Game Bar，寻找到 Gaming Copilot，登陆 Xbox 帐户。玩家可使用 Gaming Copilot 的语音模式（Voice Mode）获取游戏任务相关的帮助，推荐新游戏，查看成就或游戏历史记录等。

微软向Windows 11用户推送游戏助手Gaming Copilot Beta版（中国除外），下月扩展至Xbox移动应用。需安装Xbox PC应用、使用快捷键打开Game Bar并登录Xbox账户。功能包括语音模式帮助任务、推荐游戏及查看成就和历史记录。

文章讨论了灾难恢复计划（DR）在应对网络攻击时的不足之处，并指出许多企业在实施DR计划时未能充分考虑网络安全威胁。文章提出了几个关键问题：如何确认次要站点是否被入侵、恢复点是否干净以及威胁行为是否被阻止，并强调了在旧有DR架构中新增网络安全考虑的重要性。

微软Entra ID（原Azure Active Directory）存在严重漏洞（CVE-2025-55241），CVSS评分10.0，允许攻击者冒充任何用户甚至全球管理员。该漏洞源于服务到服务令牌与Azure AD Graph API的缺陷组合，已修复。

A critical token validation failure in Microsoft Entra ID (previously Azure Active Directory) could have allowed attackers to impersonate any user, including Global Administrators, across any tenant. The vulnerability, tracked as CVE-2025-55241, has been assigned the maximum CVSS score of 10.0. It has been described by Microsoft as a privilege escalation flaw in Azure Entra. There is no

A vulnerability, which was classified as critical, has been found in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /module/ComponenteCurricular/edit. This manipulation of the argument ID causes sql injection. This vulnerability is tracked as CVE-2025-10846. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability classified as critical was found in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/ComponenteCurricular/view. The manipulation of the argument ID results in sql injection. This vulnerability is identified as CVE-2025-10845. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability classified as critical has been found in Portabilis i-Educar up to 2.10. Affected by this issue is some unknown functionality of the file /module/Cadastro/aluno. The manipulation of the argument is leads to sql injection. This vulnerability is referenced as CVE-2025-10844. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

Гиперпоточность, общие буферы и один неверный индекс — и границы VM оказываются условностью.

A vulnerability described as critical has been identified in Reservation Online Hotel Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /reservation/paypalpayout.php. Executing manipulation of the argument confirm can lead to sql injection. The identification of this vulnerability is CVE-2025-10843. The attack may be launched remotely. Furthermore, there is an exploit available.