Aggregator

比利时限制访问互联网档案馆的在线图书馆

Solidot
6 months 1 week ago
比利时布鲁塞尔商事法庭发布了一份禁令,旨在限制对影子图书馆的访问,受影响的网站包括安娜的档案 (Anna's Archive)、Libgen、OceanofPDF、Z-Library 以及互联网档案馆的 Open Library。除了 ISP,搜索引擎、DNS 解析器、广告商、域名服务商、内容分发网络 (CDN) 和托管商都需要采取行动限制对上述网站的访问。Open Library 由已故的 Aaron Swartz 和互联网档案馆创始人 Brewster Kahle 等人创办,旨在存档所有已出版书籍,允许读者在线借阅。与其它电子图书馆类似,它的每本书每次只能借出一份拷贝。但不同之处是它的电子书没有获得授权,而是通过自己扫描去创建电子版。

CVE-2025-8513 | Caixin News App 8.0.1 on Android com.caixin.news AndroidManifest.xml improper export of android application components (EUVD-2025-23480)

VulDB Recent Entries
6 months 1 week ago
A vulnerability, which was classified as problematic, was found in Caixin News App 8.0.1 on Android. Affected is an unknown function of the file AndroidManifest.xml of the component com.caixin.news. The manipulation leads to improper export of android application components. This vulnerability is traded as CVE-2025-8513. Local access is required to approach this attack. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2025-8512 | TVB Big Big Shop App 2.9.0 on Android hk.com.tvb.bigbigshop AndroidManifest.xml improper export of android application components (EUVD-2025-23478)

VulDB Recent Entries
6 months 1 week ago
A vulnerability, which was classified as problematic, has been found in TVB Big Big Shop App 2.9.0 on Android. This issue affects some unknown processing of the file AndroidManifest.xml of the component hk.com.tvb.bigbigshop. The manipulation leads to improper export of android application components. The identification of this vulnerability is CVE-2025-8512. An attack has to be approached locally. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2025-8511 | Portabilis i-Diario 1.5.0 Observações /diario-de-observacoes/ Descrição cross site scripting (EUVD-2025-23479)

VulDB Recent Entries
6 months 1 week ago
A vulnerability classified as problematic was found in Portabilis i-Diario 1.5.0. This vulnerability affects unknown code of the file /diario-de-observacoes/ of the component Observações. The manipulation of the argument Descrição leads to cross site scripting. This vulnerability was named CVE-2025-8511. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2025-8510 | Portabilis i-Educar 2.10 educar_matricula_lst.php Gerar ref_cod_aluno cross site scripting (EUVD-2025-23476)

VulDB Recent Entries
6 months 1 week ago
A vulnerability classified as problematic has been found in Portabilis i-Educar 2.10. This affects the function Gerar of the file ieducar/intranet/educar_matricula_lst.php. The manipulation of the argument ref_cod_aluno leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-8510. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue. The vendor initially closed the original advisory without requesting a CVE.
vuldb.com

CVE-2025-8509 | Portabilis i-Educar 2.9 educar_servidor_cad.php matricula cross site scripting (EUVD-2025-23477)

VulDB Recent Entries
6 months 1 week ago
A vulnerability was found in Portabilis i-Educar 2.9. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /intranet/educar_servidor_cad.php. The manipulation of the argument matricula leads to cross site scripting. This vulnerability is handled as CVE-2025-8509. The attack may be launched remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2025-8508 | Portabilis i-Educar 2.9 educar_avaliacao_desempenho_cad.php titulo_avaliacao/descricao cross site scripting (EUVD-2025-23475)

VulDB Recent Entries
6 months 1 week ago
A vulnerability was found in Portabilis i-Educar 2.9. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /intranet/educar_avaliacao_desempenho_cad.php. The manipulation of the argument titulo_avaliacao/descricao leads to cross site scripting. This vulnerability is known as CVE-2025-8508. The attack can be launched remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2025-8507 | Portabilis i-Educar 2.9 educar_funcao_lst.php nm_funcao/abreviatura cross site scripting (EUVD-2025-23474)

VulDB Recent Entries
6 months 1 week ago
A vulnerability was found in Portabilis i-Educar 2.9. It has been classified as problematic. Affected is an unknown function of the file /intranet/educar_funcao_lst.php. The manipulation of the argument nm_funcao/abreviatura leads to cross site scripting. This vulnerability is traded as CVE-2025-8507. It is possible to launch the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

CVE-2014-2284 | net-snmp up to 5.7.2 on Linux ICMP-MIB Table Object /proc/net/snmp decode_icmp_msg input validation (Commit a1fd64 / Nessus ID 73162)

Vuldb Updates
6 months 1 week ago
A vulnerability has been found in net-snmp up to 5.7.2 on Linux and classified as problematic. Affected by this vulnerability is the function decode_icmp_msg of the file /proc/net/snmp of the component ICMP-MIB Table Object Handler. The manipulation leads to improper input validation. This vulnerability is known as CVE-2014-2284. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad