Aggregator

CVE-2026-32565 | WebberZone Contextual Related Posts Plugin up to 4.2.1 on WordPress authorization (EUVD-2026-12812)

VulDB Recent Entries
1 month 2 weeks ago
A vulnerability was found in WebberZone Contextual Related Posts Plugin up to 4.2.1 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation results in missing authorization. This vulnerability is identified as CVE-2026-32565. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-1217 | Yoast Duplicate Post Plugin up to 4.5 on WordPress Republish Feature clone_bulk_action_handler/republish_request authorization (EUVD-2026-12800)

VulDB Recent Entries
1 month 2 weeks ago
A vulnerability has been found in Yoast Duplicate Post Plugin up to 4.5 on WordPress and classified as critical. Affected is the function clone_bulk_action_handler/republish_request of the component Republish Feature. The manipulation leads to missing authorization. This vulnerability is referenced as CVE-2026-1217. Remote exploitation of the attack is possible. No exploit is available. The affected component should be upgraded.
vuldb.com

瑞士构建 BGP 的安全替代

Solidot
1 month 2 weeks ago
边界网关路由(BGP)不是为安全设计的,而是为构成互联网的数以千计的自治系统之间大规模快速路由数据包设计的。过去四十年,BGP 运作良好,但其安全缺陷也日益显现。为堵上漏洞,BGP 引入了一系列补丁和扩展如 Resource Public Key Infrastructure (RPKI)、BGPsec 和 RPKI-based Route Origin Authorization (ROA),但无法从根本上解决问题。瑞士苏黎世联邦理工学院开发的 SCION——代表 Scalability, Control, and Isolation On Next-Generation Networks——尝试从根本上改变互联网的路由架构,提供一种更安全的替代。SCION 的首席架构师 Adrian Perrig 是苏黎世联邦理工的计算机科学教授,一直致力于提升互联网的安全。他发现安全无法拼拼凑凑,必须彻底改变设计。SCION 尝试通过三个关联机制解决 BGP 的安全缺陷:其一是多路径路由,两点之间能同时建立数十条甚至数百条并行路径,一条路径发生故障,系统会在几毫秒内完成重路由;其二是不依赖证书颁发机构的隔离域名 ISD 机制;其三是加密路径验证,路径上的每个路由器都提供一个加密签名。瑞士银行已成功测试了 SCION。

Managed ad