Aggregator

A vulnerability, which was classified as critical, has been found in Microsoft Windows Server 2022/Server 2022 23H2/Server 2025. This issue affects some unknown processing of the component Kerberos. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2025-47978. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

最近在研究内存马，但是根据网上公开的资料和文章以及常见的JNDIExploit开源项目，在vulhub的fastjson 1.2.24靶场均无法复现成功，于是在深入了解jndi内存马注入的原理和流程之后，解决Tomcat8.5和Tomcat9高版本无法注入成功的问题。

A vulnerability was found in Microsoft Windows. It has been rated as critical. Affected by this issue is some unknown functionality of the component Virtual Hard Disk. The manipulation leads to buffer over-read. This vulnerability is handled as CVE-2025-47973. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Microsoft Windows and classified as very critical. Affected by this vulnerability is an unknown functionality of the component SPNEGO Extended Negotiation. The manipulation leads to heap-based buffer overflow. This vulnerability is known as CVE-2025-47981. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows and classified as critical. Affected by this issue is some unknown functionality of the component Storage VSP Driver. The manipulation leads to untrusted pointer dereference. This vulnerability is handled as CVE-2025-47982. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A newly disclosed critical security flaw in CrushFTP has come under active exploitation in the wild. Assigned the CVE identifier CVE-2025-54309, the vulnerability carries a CVSS score of 9.0. "CrushFTP 10 before 10.8.5 and 11 before 11.3.4_23, when the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS," according to

CrushFTP 存在严重漏洞（CVE-2025-54309），CVSS 评分 9.0 分。该漏洞允许远程攻击者通过 HTTPS 获取管理员权限。攻击者利用 AS2 验证问题，在未使用 DMZ 代理功能时发起攻击。CrushFTP 已发布检测指标和缓解措施。该软件广泛用于政府、医疗和企业环境，管理敏感文件传输。过去一年中多次成为高级威胁活动目标。

当前环境异常，需完成验证后继续访问。

当前环境出现异常状态，需完成验证后方可继续访问系统或服务。

当前环境出现异常，需完成验证后方可继续访问。

部分pwn

昨天我们的师傅在群里发布了一道关于Tomcat的Web题，希望大家能贡献自己的思路，在这过场中大家积极参与，看到了很多解题的思路，我们师傅感觉非常不错，今天正好为了解答一些师傅们疑惑，在这里给大家普及一些关于Tomcat与Nginx相结合的资料供大家参考

Япония придумала ответку страшным группировкам.

通过源码分析以及各种API来讲解so的加载过程

简单的链子进入题目看到一段代码：<?phpclass A {public $cmd;function __destruct() {if (isset($this->cmd)) {system($this->cmd);}}}​if (isset($_GET['data'])) {$data = $_GET['data'];@unserialize($data);} else {hi

Stripe强制要求所有发票包含邮箱地址，导致客户直接联系公司而非通过支持门户提问，增加负担并延迟响应。作者建议创建别名并自动回复支持链接解决问题，并呼吁Stripe改进此问题。