Aggregator
Privilege Escalation Flaw Found in Azure Machine Learning Service
1 year ago
A critical Azure Machine Learning flaw allows privilege escalation, risking subscription compromise
AI爬虫重塑互联网生态:已占据全球三成网络流量
1 year ago
安全客
NimDoor 高级加密窃密木马:进程被杀后可自动“复活”
1 year ago
安全客
谷歌因安卓手机数据传输被判赔3.14亿美元,加州陪审团裁定其“偷用用户流量”
1 year ago
安全客
Cloudflare 推出“按次付费抓取”:网站可向AI爬虫收取内容使用费
1 year ago
安全客
Qwizzserial恶意软件伪装正规app在安卓平台大规模窃取银行数据并拦截2FA短信
1 year ago
安全客
美国20州起诉卫生部:反对将医保数据共享给移民执法机构
1 year ago
安全客
Microsoft investigates ongoing SharePoint Online access issues
1 year ago
Microsoft is investigating an ongoing incident causing intermittent issues for users attempting to access SharePoint Online sites. [...]
Sergiu Gatlan
Alleged Data Sale of doValue S.p.A.
1 year ago
Alleged Data Sale of doValue S.p.A.
Dark Web Informer - Cyber Threat Intelligence
Wing FTP Server 曝CVSS 10.0 远程代码执行漏洞(CVE-2025-47812),可实现完全控制,PoC 已公开
1 year ago
安全客
Interpol identifies West Africa as potential new hotspot for cybercrime compounds
1 year ago
Interpol said it analyzed five years of data about the illicit industry, which relies on human trafficking to staff up centers with people who are forced to conduct investment fraud, romance scams and other schemes.
CVE-2025-6463:Forminator 插件曝高危任意文件删除漏洞,超 60 万 WordPress 网站恐遭远程接管
1 year ago
安全客
360亮相全球数字经济大会,智能体涌现,安全运营跃升
1 year ago
安全客
Кто держит минералы — держит мир за горло. Но 4 страны решили сказать Китаю: стоп, хватит
1 year ago
«Квад» начинает борьбу за независимость электромобилей и роботов.
Drupal security advisory (AV25-389)
1 year ago
Canadian Centre for Cyber Security
Apache Tomcat and Camel Vulnerabilities Actively Targeted in Cyberattacks
1 year ago
The Apache Foundation disclosed several critical vulnerabilities affecting two of its widely used software platforms, Apache Tomcat and Apache Camel, sparking immediate concern among cybersecurity experts and organizations worldwide. Apache Tomcat, a popular platform for running Java-based web applications, was found to have a severe flaw identified as CVE-2025-24813. This vulnerability, impacting versions 9.0.0.M1 to […]
The post Apache Tomcat and Camel Vulnerabilities Actively Targeted in Cyberattacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Aman Mishra
CVE-2025-6041 | yContributors Plugin up to 0.5 on WordPress Setting cross-site request forgery (EUVD-2025-19925)
1 year ago
A vulnerability was found in yContributors Plugin up to 0.5 on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation leads to cross-site request forgery.
This vulnerability is handled as CVE-2025-6041. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2025-5933 | RD Contacto Plugin up to 1.4 on WordPress Setting rdWappUpdateData cross-site request forgery (EUVD-2025-19928)
1 year ago
A vulnerability has been found in RD Contacto Plugin up to 1.4 on WordPress and classified as problematic. Affected by this vulnerability is the function rdWappUpdateData of the component Setting Handler. The manipulation leads to cross-site request forgery.
This vulnerability is known as CVE-2025-5933. The attack can be launched remotely. There is no exploit available.
vuldb.com
CVE-2025-6039 | ProcessingJS Plugin up to 1.2.2 on WordPress pjs4wp cross site scripting (EUVD-2025-19914)
1 year ago
A vulnerability, which was classified as problematic, was found in ProcessingJS Plugin up to 1.2.2 on WordPress. Affected is the function pjs4wp. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2025-6039. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com