Aggregator
CVE-2025-9845 | code-projects Fruit Shop Management System 1.0 products.php product_code/gen_name/product_name/supplier cross site scripting
OneDrive Phishing Attack Targets Corporate Executives for Credential Theft
A newly discovered spearphishing campaign is targeting executives and senior leadership across multiple industries by exploiting trusted OneDrive document‐sharing notifications. The Stripe OLT SOC has identified this sophisticated attack, which leverages highly tailored emails to impersonate internal HR communications and harvest corporate credentials through a convincing Microsoft Office/OneDrive login page. At the heart of the […]
The post OneDrive Phishing Attack Targets Corporate Executives for Credential Theft appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Китай создал танкистов-киборгов с обзором в 360 градусов. AR-шлемы превращают экипажи в сверхлюдей, управляющих пушками взглядом
CVE-2025-9843 | Das Parking Management System 停车场管理系统 6.2.0 /Operator/FindAll information disclosure
CVE-2025-9842 | Das Parking Management System 停车场管理系统 6.2.0 /Operator/Search information disclosure
Submit #641940: code-projects Fruit Shop Management System 1.0 Cross Site Scripting [Accepted]
Submit #641806: DLink DIR-878 A1 FW104B05 CWE-120 Buffer Copy without Checking Size of Input ('Classic Buf [Duplicate]
CVE-2025-9841 | code-projects Mobile Shop Management System 1.0 AddNewProduct.php ProductImage unrestricted upload
Судебная система парализована из-за хакерской атаки
Submit #644854: Das Parking Management System 6.2.0 Sensitive Data Exposure [Accepted]
Submit #641783: Das Parking Management System 6.2.0 Sensitive Data Exposure [Accepted]
CVE-2025-9840 | itsourcecode Sports Management System 1.0 /Admin/gametype.php sql injection
CVE-2025-9839 | itsourcecode Student Information Management System 1.0 index.php ID sql injection
CVE-2025-9838 | itsourcecode Student Information Management System 1.0 index.php ID sql injection
CVE-2025-9837 | itsourcecode Student Information Management System 1.0 index.php studentId sql injection
【赏金15000美元】通过监控调试模式实现 RCE
New ClickFix Attack Mimic as AnyDesk Leverages Windows Search to Drop MetaStealer
A novel variant of the ClickFix attack has recently emerged, masquerading as a legitimate AnyDesk installer to spread the MetaStealer infostealer. This campaign exploits a fake Cloudflare Turnstile verification page to lure victims into executing a crafted Windows protocol handler, ultimately delivering a malicious MSI package disguised as a PDF. As organizations continue to harden […]
The post New ClickFix Attack Mimic as AnyDesk Leverages Windows Search to Drop MetaStealer appeared first on Cyber Security News.