Aggregator

Security Affairs newsletter Round 486 by Pierluigi Paganini – INTERNATIONAL EDITION | U.S. CISA

Интернет стал новым полем для охоты фальшивых экстрасенсов.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Versa Director bug to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Versa Director Dangerous File Type Upload Vulnerability CVE-2024-39717 (CVSS score: 6.6) to its Known Exploited Vulnerabilities (KEV) catalog. The vulnerability CVE-2024-39717 resides in the “Change Favicon” feature in Versa Director’s GUI, […]

U.S. CISA adds Versa Director bug to its Known Exploited Vulnerabilities catalogU.S. Cybersecu

Древняя галактика, наблюдаемая телескопом «Хаббл», рассказывает о прошлом вселенной.

cby表现得远超预期，行李箱的陪伴是值得的

昨天正好收到朋友寄过来的一台服务器，就顺便把公司的网络重新优化下，部署成软路由nas，这玩意真的不能晚上搞，一搞就天亮了。还好周末，不然没网影响员工工作

最新保姆级PVE8安装教程！虚拟机PCIE设备及SR-IOV核显直通，最多分配7个虚拟化单独核显！最强虚拟机  昨天正好收到朋友寄过来的一台服务器，就顺便把公司的网络重新优化下，部署成...

Эксперты предрекают радикальные изменения в индустрии.

A vulnerability classified as critical was found in ContiNew Admin 3.2.0. Affected by this vulnerability is the function top.continew.starter.extension.crud.controller.BaseController#tree of the file /api/system/dept/tree?sort=parentId%2Casc&sort=sort%2Casc. The manipulation of the argument sort leads to sql injection. This vulnerability is known as CVE-2024-8155. The attack can be launched remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability classified as problematic has been found in SourceCodester QR Code Bookmark System 1.0. Affected is an unknown function of the file /endpoint/update-bookmark.php of the component Parameter Handler. The manipulation of the argument tbl_bookmark_id/name/url leads to cross site scripting. This vulnerability is traded as CVE-2024-8154. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /endpoint/delete-bookmark.php. The manipulation of the argument bookmark leads to cross site scripting. The identification of this vulnerability is CVE-2024-8153. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /endpoint/add-bookmark.php of the component Parameter Handler. The manipulation of the argument name/url leads to cross site scripting. This vulnerability was named CVE-2024-8152. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in SourceCodester Interactive Map with Marker 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/delete-mark.php. The manipulation of the argument mark leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-8151. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Submit #391851 / VDB-275743

Submit #397580 / VDB-275742