Aggregator

1. dirseach ：以前最喜欢喜欢用，不过感觉速度太慢。

2. dirmapw ：感觉还可以，备用

3. Dirscan152 ： 速度很快，就是判断存活老是容易漏跑，默认每5秒判断存活，不重试，已优化默认每11秒判断存活，重试2次，
   

   
   同时脚本优化结果处理。
   

打包下载地址：链接： 密码：q4ydvd

2 个帖子 - 1 位参与者

阅读完整话题

中国台湾省近24小时(2025年07月05日)发展动态的分析报告 一、总体概要 过去24小时内，中国台湾省的动

《核武器重要吗：彭培奥如何应对伊朗》这篇文章探讨了核武器在国际关系中的重要性，以及美国如何应对伊朗的核威胁。

A vulnerability classified as problematic was found in 389-ds-base. This vulnerability affects unknown code of the component Hash Handler. The manipulation of the argument userPassword leads to denial of service. This vulnerability was named CVE-2024-5953. The attack can be initiated remotely. There is no exploit available.

A vulnerability has been found in PyO3 up to 0.22.3 and classified as problematic. This vulnerability affects unknown code of the component Reference Handler. The manipulation leads to use after free. This vulnerability was named CVE-2024-9979. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in GNU grub2. Affected by this vulnerability is an unknown functionality of the component squash4. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2025-0678. Attacking locally is a requirement. There is no exploit available.

A vulnerability classified as problematic has been found in GNOME gnome-remote-desktop. Affected is an unknown function of the component Session Agent Handler. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2024-5148. An attack has to be approached locally. There is no exploit available.

A vulnerability was found in GNU grub2 and classified as critical. This issue affects the function grub_udf_read_block of the component udf. The manipulation leads to heap-based buffer overflow. The identification of this vulnerability is CVE-2025-0689. Local access is required to approach this attack. There is no exploit available.

A vulnerability was found in GNU grub2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component hfs. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2025-1125. It is possible to launch the attack on the local host. There is no exploit available.

人工智能编程开发助手Cursor因定价变更引发争议后致歉，并调整订阅方案：新版Cursor Pro采用按使用量计费，新增无限使用的Auto模式及每月20美元先进模型调用额度；超出额度后按成本价计费，并可设置消费上限避免高额账单。

Удалённый взлом превращает Call of Duty в поле для атак.

A vulnerability has been found in Arab Portal and classified as problematic. This vulnerability affects unknown code of the file download.php. The manipulation of the argument Title leads to basic cross site scripting. This vulnerability was named CVE-2006-1504. The attack can be initiated remotely. Furthermore, there is an exploit available.

CV域名促销活动即将于7月底结束，优质域名可享半价优惠并叠加蓝点网10%折扣券。单字母域名如k.cv现价4506.75美元。活动结束后价格恢复原价。目前可注册的单字母域名包括h.cv、k.cv等，其他优质域名如vip.cv、ok.cv等也开放注册。

Фишинг, доксинг, скам: что ждёт тех, чьи резюме попали не в те руки?

Taiwan's National Security Bureau (NSB) has warned that China-developed applications like RedNote (aka Xiaohongshu), Weibo, Douyin, WeChat, and Baidu Cloud pose security risks due to excessive data collection and data transfer to China. The alert comes following an inspection of these apps carried out in coordination with the Ministry of Justice Investigation Bureau (MJIB) and the Criminal

台湾国安局警告中国大陆开发的应用如小红书、微博等存在安全风险，过度收集数据并传回中国。这些应用违反多项安全指标，涉及个人信息和设备信息的获取。其他国家也已对类似应用采取限制措施。

Метаматериалы переворачивают привычную нам физику.

Крупнейшие системы Европы стали частью чужого бизнеса, причём незаметно для владельцев.

微软关闭在巴基斯坦的当地业务，将其许可和商业合同转移到爱尔兰，并通过经销商和周边办事处继续为客户提供服务。此举是微软全球裁员和优化劳动力的一部分，尽管客户支持不受影响，但可能对巴基斯坦的IT发展产生不利影响。

A vulnerability classified as critical was found in SecurePoll Extension up to 1.39.12/1.42.6/1.43.1 on Mediawiki. This vulnerability affects unknown code of the file SetTranslationHandler.php. The manipulation leads to missing authorization. This vulnerability was named CVE-2025-53485. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.