INC
You must login to view this content
Aggregator
WorldLeaks
10 months 1 week ago
You must login to view this content
cohenido
CVE-2017-14097 | Trend Micro Smart Protection Server up to 3.2 Database Encryption access control (EDB-43388 / ID 371051)
10 months 1 week ago
A vulnerability was found in Trend Micro Smart Protection Server up to 3.2. It has been declared as critical. This vulnerability affects unknown code of the component Database Encryption. The manipulation leads to improper access controls.
This vulnerability was named CVE-2017-14097. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Google Chrome security advisory (AV25-369)
10 months 1 week ago
Canadian Centre for Cyber Security
OpenRouter raises $40 million to simplify AI model overload
10 months 1 week ago
OpenRouter, a startup helping software developers manage the growing number of AI models, has raised $40 million in venture capital. The company wants to make it easier for developers to choose and use the right AI model for their applications, without having to build their own complex systems. “There’s been a Cambrian explosion of models. Our business is a one-stop shop for all models,” CEO and co-founder Alex Atallah told The Wall Street Journal. OpenRouter … More →
The post OpenRouter raises $40 million to simplify AI model overload appeared first on Help Net Security.
Sinisa Markovic
CVE-2018-6024 | Project Log 1.5.3 on Joomla Search sql injection (EDB-44124)
10 months 1 week ago
A vulnerability, which was classified as critical, was found in Project Log 1.5.3 on Joomla. Affected is an unknown function. The manipulation of the argument Search as part of Parameter leads to sql injection.
This vulnerability is traded as CVE-2018-6024. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
JS利用
10 months 1 week ago
声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由用户承担全部
NETSCOUT’s Arbor DDoS Protection Recognized as a Top Solution
10 months 1 week ago
Omdia, a global analyst and advisory leader that helps connect the dots across the technology ecosystem, recently named NETSCOUT’s Arbor distributed denial-of-service (DDoS) protection solutions as leading in the DDoS prevention market. Omdia’s DDoS Prevention Technology Market Tracker 3Q24–4Q24 is an analysis of...
Gary Sockrider
CVE-2025-6627 | TOTOLINK A702R 4.0.0-B20230721.1521 HTTP POST Request /boafrm/formIpv6Setup submit-url buffer overflow (EUVD-2025-19135)
10 months 1 week ago
A vulnerability has been found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow.
This vulnerability was named CVE-2025-6627. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
G.O.S.S.I.P 阅读推荐 2025-06-26 RAG Trackback
10 months 1 week ago
Россия запрещает Apple диктовать правила. Теперь на iPhone должен быть RuStore
10 months 1 week ago
Apple может биться в истерике. Google — возмущаться. Но власти будут стоять на своём.
Submit #602292: TOTOLINK A702R V4.0.0-B20230721.1521 Buffer Overflow [Accepted]
10 months 1 week ago
Submit #602292 / VDB-313852
yuhongxiang
CVE-2005-4234 | Powerdev EncapsGallery 1.0.0 gallery.php ID sql injection (EDB-26789 / BID-15836)
10 months 1 week ago
A vulnerability was found in Powerdev EncapsGallery 1.0.0 and classified as critical. Affected by this issue is some unknown functionality of the file gallery.php. The manipulation of the argument ID leads to sql injection.
This vulnerability is handled as CVE-2005-4234. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Realtek Bluetooth Flaw Allows Attackers to Launch DoS Attacks During Pairing
10 months 1 week ago
A critical vulnerability in Realtek’s Bluetooth Low Energy (BLE) implementation enables attackers to launch denial-of-service (DoS) attacks during device pairing. The flaw (CVE-2024-48290) affects Realtek RTL8762E BLE SDK v1.4.0, allowing malicious actors to disrupt connections by exploiting protocol inconsistencies. Attackers can send a crafted ll_terminate_ind packet or inject premature pairing data, crashing the target device’s Bluetooth stack […]
The post Realtek Bluetooth Flaw Allows Attackers to Launch DoS Attacks During Pairing appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Divya
vivo X Fold5 评测:更轻更强,苹果生态最佳 CP
10 months 1 week ago
折叠屏硬件趋于成熟,vivo X Fold5 仍然想做出新突破。
Akira
10 months 1 week ago
You must login to view this content
cohenido
CVE-2025-6603 | coldfunction qCUDA up to db0085400c2f2011eed46fbc04fdc0873141688e qcow.c qcow_make_empty s->l1_size integer overflow (Issue 10 / EUVD-2025-19083)
10 months 1 week ago
A vulnerability was found in coldfunction qCUDA up to db0085400c2f2011eed46fbc04fdc0873141688e. It has been rated as problematic. Affected by this issue is the function qcow_make_empty of the file qCUDA/qcu-device/block/qcow.c. The manipulation of the argument s->l1_size leads to integer overflow.
This vulnerability is handled as CVE-2025-6603. The attack needs to be approached locally. There is no exploit available.
This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.
vuldb.com
In the Wild: Malware Prototype with Embedded Prompt Injection
10 months 1 week ago
In this write-up we present a malware sample found in the wild that boasts a novel and unusual evasion mechanism — an attempted prompt injection (”Ignore all previous instructions…”) aimed to manipulate AI models processing the sample. The sample gives the impression of an isolated component or an experimental proof-of-concept, and we can only speculate […]
The post In the Wild: Malware Prototype with Embedded Prompt Injection appeared first on Check Point Research.
CVE-2017-2619 | Samba up to 4.4.10/4.5.6/4.6.0 race condition (Bug 1429472 / EDB-41740)
10 months 1 week ago
A vulnerability was found in Samba up to 4.4.10/4.5.6/4.6.0. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to race condition.
The identification of this vulnerability is CVE-2017-2619. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Chrome Releases Security Patch for 11 Code Execution Vulnerabilities
10 months 1 week ago
The Chrome team has announced the rollout of a critical security update for its popular web browser, Chrome, addressing 11 code execution vulnerabilities that could potentially put millions of users at risk. The update, Chrome 138.0.7204.49 for Linux and 138.0.7204.49/50 for Windows and Mac, is now being distributed through the stable channel and will reach […]
The post Chrome Releases Security Patch for 11 Code Execution Vulnerabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Divya