Aggregator

A vulnerability, which was classified as critical, has been found in ConPresso CMS 4.0.4a. Affected by this vulnerability is an unknown functionality of the file index.php. This manipulation of the argument nr causes sql injection. This vulnerability appears as CVE-2006-5128. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Salims Softhouse JAF CMS 4.0. Affected by this issue is some unknown functionality. Such manipulation of the argument Message leads to basic cross site scripting. This vulnerability is traded as CVE-2006-5129. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Salims Softhouse JAF CMS 4.0 and classified as problematic. This affects an unknown part. Performing a manipulation results in basic cross site scripting. This vulnerability is known as CVE-2006-5130. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability was found in Salims Softhouse JAF CMS 4.0 and classified as critical. This vulnerability affects unknown code. Executing a manipulation of the argument <?php can lead to memory corruption. This vulnerability is handled as CVE-2006-5131. The attack can be executed remotely. There is not any exploit available.

A vulnerability was found in HP Mercury SiteScope 8.2. It has been rated as problematic. The affected element is an unknown function. This manipulation causes denial of service. The identification of this vulnerability is CVE-2006-5134. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability categorized as critical has been discovered in A-Blog 2. The impacted element is an unknown function. Such manipulation of the argument navigation_end leads to file inclusion. This vulnerability is referenced as CVE-2006-5135. It is possible to launch the attack remotely. Furthermore, an exploit is available.

A vulnerability identified as critical has been detected in Ubbcentral UBB.threads 6.5.1.1. This affects an unknown function of the file ubbt.inc.php. Performing a manipulation of the argument GLOBALS[configdir] results in file inclusion. This vulnerability is identified as CVE-2006-5136. The attack can be initiated remotely. Additionally, an exploit exists. You should upgrade the affected component.

A vulnerability labeled as critical has been found in Ubbcentral UBB.threads 6.5.1.1. This impacts an unknown function. Executing a manipulation of the argument config[path] can lead to Remote Code Execution. This vulnerability is tracked as CVE-2006-5137. The attack can be launched remotely. Moreover, an exploit is present. The affected component should be upgraded.

Министерство коммерции Китая направило в Еврокомиссию жесткую критику закона о кибербезопасности.

Quorum Cyber report finds higher and further education institutions experienced 63% increase in attacks over a year

Microsoft is set to introduce Efficiency Mode in Microsoft Teams, a performance-enhancing feature designed to improve app responsiveness and meeting quality on hardware-constrained devices. The rollout begins in early May 2026 and is expected to be completed by mid-May 2026, with the feature linked to Microsoft 365 Roadmap ID 560055. Efficiency Mode is a performance-optimized […]

The post Microsoft Teams Rolls Out Efficiency Mode to Optimize Performance on Low-End Devices appeared first on Cyber Security News.

Cybersecurity researchers at Forcepoint uncover new indirect prompt injection attacks that use hidden website code to exploit AI assistants like GitHub Copilot.

Leaked data from RAMP reveals Russia’s ransomware ecosystem, analyzing 1,732 threads, 7,707 users, and 340,000 IP records from the forum. RAMP was not just another dark web forum. It was one of the clearest examples of how ransomware has become an organized marketplace, with sellers, buyers, brokers, and recruiters all playing different roles in the […]

自主安全成为防御体系的新基石。

美国防部网络高官针对美军网络空间态势和能力作证。

默认设计暴露了所有用户数据

A vulnerability was found in PowerDNS Authoritative up to 4.9.13/5.0.3. It has been classified as problematic. This affects an unknown part of the component File Descriptor Handler. Performing a manipulation results in denial of service. This vulnerability is known as CVE-2026-33610. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in PowerDNS Authoritative up to 4.9.13/5.0.3. It has been declared as problematic. This vulnerability affects unknown code. Executing a manipulation can lead to ldap injection. This vulnerability is handled as CVE-2026-33609. The attack can be executed remotely. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability labeled as problematic has been found in PowerDNS Authoritative up to 4.9.13/5.0.3. This issue affects some unknown processing. The manipulation results in denial of service. This vulnerability is identified as CVE-2026-33608. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.

A vulnerability described as critical has been identified in Dell PowerProtect Data Domain up to 7.13.1.60/8.3.1.10/8.6. This affects an unknown part. Such manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2026-26354. The attack can be launched remotely. No exploit exists.