Aggregator

梆梆安全发布《2025年银行业信息安全分析报告》，指出银行业移动应用面临高危漏洞、个人信息保护合规及电诈技术升级等多重挑战。报告分析了3126款银行APP的安全状况，并提出事前防御、事中监测和事后回溯的三重防护体系以应对新型电信诈骗风险。

A vulnerability has been found in code-projects Public Chat Room 1.0 and classified as critical. This vulnerability affects unknown code of the file send_message.php. The manipulation of the argument ID leads to sql injection. This vulnerability was named CVE-2025-8164. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in deerwms deer-wms-2 up to 3.3. This affects an unknown part of the file /system/role/list. The manipulation of the argument params[dataScope] leads to sql injection. This vulnerability is uniquely identified as CVE-2025-8163. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in deerwms deer-wms-2 up to 3.3. Affected by this issue is some unknown functionality of the file /system/dept/list. The manipulation of the argument params[dataScope] leads to sql injection. This vulnerability is handled as CVE-2025-8162. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. Affected by this vulnerability is an unknown functionality of the file /system/role/export. The manipulation of the argument params[dataScope] leads to sql injection. This vulnerability is known as CVE-2025-8161. The attack can be launched remotely. Furthermore, there is an exploit available.

A sophisticated Russian-aligned threat actor known as Hive0156 has intensified its cyber espionage campaigns against Ukrainian government and military organizations, deploying the notorious Remcos Remote Access Trojan through carefully crafted social engineering attacks. The group has demonstrated remarkable persistence in targeting Ukraine’s defense infrastructure throughout 2025, utilizing weaponized Microsoft LNK files and PowerShell scripts as […]

The post Hive0156 Hackers Attacking Government and Military Organizations to Deploy Remcos RAT appeared first on Cyber Security News.

Submit #620628 / VDB-317578

A vulnerability classified as critical has been found in Tenda AC20 up to 16.03.08.12. Affected is an unknown function of the file /goform/SetSysTimeCfg of the component httpd. The manipulation of the argument timeZone leads to buffer overflow. This vulnerability is traded as CVE-2025-8160. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #619729 / VDB-317577

Submit #619697 / VDB-317576

Submit #619696 / VDB-317575

在2025年7月19日至20日，安全公司和国家CERT报告称，在Premise SharePoint服务器上活跃利用了两个漏洞（CVE-2025-49704和CVE-2025-49706），允许无认证控制服务器。微软发布了针对其他漏洞的补丁（CVE-2025-53770和CVE-2025-53771），但引发混淆。攻击影响全球多国多行业。Kaspersky检测到恶意活动并提供防护建议。

MCP重新定义了大语言模型（LLM）与外部世界的互动方式。本文主要介绍并复现MCP服务的提示词注入、工具投毒、命令注入等漏洞，以及给出了相关漏洞的防护策略。

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. The identification of this vulnerability is CVE-2025-8159. The attack may be initiated remotely. Furthermore, there is an exploit available.

Submit #620625 / VDB-317574

微软SharePoint发现严重漏洞CVE-2025-53770，已被中国支持的黑客利用进行攻击。攻击者可窃取加密密钥、植入恶意软件并横向移动至其他系统。微软已发布补丁，但专家警告许多系统可能已遭入侵。中国否认责任，但此类事件频发。

A vulnerability was found in PHPGurukul Login and User Management System 3.3. It has been declared as critical. This vulnerability affects unknown code of the file /admin/yesterday-reg-users.php. The manipulation of the argument ID leads to sql injection. This vulnerability was named CVE-2025-8158. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in PHPGurukul User Registration & Login and User Management 3.3. It has been classified as critical. This affects an unknown part of the file /admin/lastthirtyays-reg-users.php. The manipulation of the argument ID leads to sql injection. This vulnerability is uniquely identified as CVE-2025-8157. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in PHPGurukul User Registration & Login and User Management 3.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/lastsevendays-reg-users.php. The manipulation of the argument ID leads to sql injection. This vulnerability is handled as CVE-2025-8156. The attack may be launched remotely. Furthermore, there is an exploit available.

Submit #620604 / VDB-317573