Aggregator

A vulnerability has been found in FULL Cliente Plugin up to 3.1.22 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-9211. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Download Plugins and Themes in ZIP from Dashboard Plugin up to 1.9.1 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-9232. The attack may be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Embed Videos and Respect Privacy Plugin up to 1.2 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-9346. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability has been found in Easy PayPal Gift Certificate Plugin up to 1.2.3 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument wpppgc_plugin_options leads to cross-site request forgery. This vulnerability was named CVE-2024-9592. The attack can be initiated remotely. There is no exploit available.

Расследование раскрыло тайну исчезновения рекордной суммы с биржи ByBit.

A vulnerability classified as problematic has been found in Alexphpteam @lex Poll 2.1. This affects an unknown part of the file setup.php. The manipulation of the argument language_setup leads to cross site scripting. This vulnerability is uniquely identified as CVE-2008-7141. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The U.S. Secret Service and global law enforcement seized the domain of sanctioned Russian crypto exchange Garantex. An international law enforcement operation led by U.S. Secret Service seized the website (“garantex[.]org”) of the sanctioned Russian crypto exchange Garantex. In April 2022, the US Treasury Department sanctioned the virtual currency exchange. Garantex has been active since 2019, […]

本文将围绕 Garantex 的被制裁历史、资金管理策略等情况，探讨如何规避链上合规风险。

本文将围绕 Garantex 的被制裁历史、资金管理策略等情况，探讨如何规避链上合规风险。

GitHub Copilot, once a developer-centric tool, is now revolutionizing workflows across technical and non-technical roles. With features like Agent Mode, CLI integration, and Project Padawan, Copilot is emerging as a universal productivity enhancer. This article explores three key developments reshaping collaboration in 2025. 1. From Pair Programmer to Cross-Functional Assistant GitHub Copilot now extends beyond […]

The post GitHub Explains How Security Professionals Can Use Copilot for Log Analysis appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Microsoft has launched Microsoft 365 E5 Security as an add-on to its Business Premium suite, providing small and medium-sized businesses (SMBs) with advanced tools to combat escalating cyber threats. The offering integrates enterprise-grade security features at a 57% cost savings compared to standalone purchases, addressing evolving regulatory and cyber insurance demands1. Enhanced Identity Protection and […]

The post Microsoft Introduces 365 E5 Security Add-On for Business Premium Customers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical vulnerability in AMD’s Zen 1 through Zen 4 processors allows attackers to bypass microcode signature validation, potentially undermining hardware-based security mechanisms. The flaw stems from AMD’s use of AES-CMAC as a hash function during microcode patch verification – a design decision that enables collision attacks and forged RSA keys. Vulnerability Rooted in Cryptographic […]

The post AMD Microcode Vulnerability Allows Attackers to Load Malicious Patches appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability classified as problematic has been found in Activity O Meter Plugin up to 1.0 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-13668. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Reservit Hotel Plugin up to 2.x on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-9458. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in davidanderson WPGet API Plugin up to 2.2.10 on WordPress. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to server-side request forgery. This vulnerability was named CVE-2024-13857. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Linux Kernel up to 6.13.3/6.14-rc2. It has been classified as problematic. This affects the function panthor_ioctl_dev_query of the component drm panthor. The manipulation leads to uninitialized pointer. This vulnerability is uniquely identified as CVE-2025-21843. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.15/6.13.3/6.14-rc2 and classified as critical. Affected by this issue is the function amdgpu_amdkfd_free_gtt_mem of the component amdkfd. The manipulation leads to type confusion. This vulnerability is handled as CVE-2025-21842. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

已修复

速修复