JVN: IDEC製品における複数の脆弱性
IDEC株式会社が提供する複数の製品には、複数の脆弱性が存在します。
Aggregator
GPOHound: Offensive GPO dumping and analysis tool
8 months ago
GPOHound is a tool for dumping and analysing Group Policy Objects (GPOs) extracted from the SYSVOL share. It provides a structured, formalized format to help uncover misconfigurations, insecure settings, and privilege escalation paths in...
The post GPOHound: Offensive GPO dumping and analysis tool appeared first on Penetration Testing Tools.
ddos
.NET Emit 技术打造免杀 WebShell 突破安全壁垒
8 months ago
.NET 内网攻防实战电子报刊
8 months ago
01.NET内网安全攻防报刊小报童电子报刊【.NET内网安全攻防】也正式上线了,引入小报童也是为了弥补知识星球
绕过 .NET 身份认证,自动化伪造.ASPXAUTH Cookie票据
8 months ago
.NET Emit 技术打造免杀 WebShell 突破安全壁垒
8 months ago
当前环境出现异常,需完成验证后方可继续访问。
.NET 内网攻防实战电子报刊
8 months ago
当前环境异常,需完成验证后方可继续访问。
绕过 .NET 身份认证,自动化伪造.ASPXAUTH Cookie票据
8 months ago
当前环境出现异常,需完成验证后方可继续访问。
银狐最新注入型免杀样本详细分析
8 months ago
当前环境出现异常状态,需完成验证后才能继续访问相关内容或功能。
银狐最新注入型免杀样本详细分析
8 months ago
银狐最新注入型免杀样本详细分析
罗马仕中层曝问题充电宝内幕;传 OpenAI 计划推出浏览器产品;邓紫棋首部科幻小说预售 | 极客早知道
8 months ago
当前环境出现异常,需完成验证后方可继续访问。
罗马仕中层曝问题充电宝内幕;传 OpenAI 计划推出浏览器产品;邓紫棋首部科幻小说预售 | 极客早知道
8 months ago
裁员 9000 人后微软高管表态:想留下,就得学会 AI
YouTube 将更新政策,打击 AI 批量生成低质内容牟利行为
蚂蚁国际计划把 Circle 的稳定币纳入其区块链平台
Linux系统安全加固实验
8 months ago
通过设置口令策略、修改SSH端口和锁定弱账户等方法,提升Linux系统的安全性。
派早报:Apple 开启返校季优惠、马斯克发布 Grok 4 等
8 months ago
Apple开启2025返校季教育优惠活动;Perplexity推出集成AI助手的Comet浏览器;马斯克发布Grok 4 AI大模型;JEDEC发布LPDDR6新标准;乐道推出纯电SUV L90;任天堂宣布停售游戏兑换券。
科技爱好者周刊(第 356 期):公司强推 AI 编程,我该怎么办
8 months ago
这篇文章记录了每周值得关注的科技内容和工具推荐,并探讨了AI编程对程序员的影响及应对策略。
威努特存算分离解决方案,助力智慧水利数字孪生落地
8 months ago
保障流域数字孪生体高保真运行。
CVE-2025-53626 | pdfme up to 5.4.0 code injection (EUVD-2025-21039)
8 months ago
A vulnerability classified as critical was found in pdfme up to 5.4.0. Affected by this vulnerability is an unknown functionality. The manipulation leads to code injection.
This vulnerability is known as CVE-2025-53626. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-46406 | Gallagher Command Centre Server privilege context switching error (EUVD-2025-20884)
8 months ago
A vulnerability was found in Gallagher Command Centre Server. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to privilege context switching error.
This vulnerability is handled as CVE-2025-46406. It is possible to launch the attack on the local host. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-7411 | code-projects LifeStyle Store 1.0 /success.php ID sql injection (EUVD-2025-21046)
8 months ago
A vulnerability was found in code-projects LifeStyle Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /success.php. The manipulation of the argument ID leads to sql injection.
This vulnerability is known as CVE-2025-7411. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-7408 | SourceCodester Zoo Management System 1.0 animal_form_template.php msg cross site scripting (EUVD-2025-21007)
8 months ago
A vulnerability has been found in SourceCodester Zoo Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/templates/animal_form_template.php. The manipulation of the argument msg leads to cross site scripting.
This vulnerability was named CVE-2025-7408. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com