Aggregator

CVE-2025-2373 | PHPGurukul Human Metapneumovirus Testing Management System 1.0 /check_availability.php mobnumber/employeeid sql injection

9 months ago

A vulnerability classified as critical was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. This vulnerability affects unknown code of the file /check_availability.php. The manipulation of the argument mobnumber/employeeid leads to sql injection. This vulnerability was named CVE-2025-2373. The attack can be initiated remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2025-2374 | PHPGurukul Human Metapneumovirus Testing Management System 1.0 /profile.php aid/adminname/mobilenumber/email sql injection

Vuldb Updates

9 months ago

A vulnerability, which was classified as critical, has been found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument aid/adminname/mobilenumber/email leads to sql injection. The identification of this vulnerability is CVE-2025-2374. The attack may be initiated remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2023-6918 | libssh up to 0.9.7/0.10.5 return value (FEDORA-2023-55800423a8 / Nessus ID 232832)

Vuldb Updates

9 months ago

A vulnerability was found in libssh up to 0.9.7/0.10.5 and classified as problematic. This issue affects some unknown processing. The manipulation leads to unchecked return value. The identification of this vulnerability is CVE-2023-6918. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

Windsor Schools’ Proactive Approach to Cybersecurity and Student Safety

Security Boulevard

9 months ago

How Cloud Monitor and Content Filter Provide Visibility, Safety, and Peace of Mind at an Independent School Windsor Schools, a specialized K-12 learning program in New Jersey, is dedicated to providing a safe and supportive learning environment for its students. Soon after he started his role as IT Manager—and Windsor Schools’ sole technology staff member—Kyle ...

The post Windsor Schools’ Proactive Approach to Cybersecurity and Student Safety appeared first on ManagedMethods Cybersecurity, Safety & Compliance for K-12.

The post Windsor Schools’ Proactive Approach to Cybersecurity and Student Safety appeared first on Security Boulevard.

Katie Fritchen

思科修复 IOS XR 中的10个漏洞

代码卫士

9 months ago

速修复

钓鱼攻击在GitHub发布虚假“安全告警”，使用OAuth 应用劫持账号

代码卫士

9 months ago

速修复

人保科技携手奇安信，依托DeepSeek打造研发安全新范式

代码卫士

9 months ago

人保科技携手奇安信，联袂打造保险行业首个“AI驱动研发安全”新标杆！

Cisco 预警 IOS XR 软件存漏洞，攻击者可借此发动拒绝服务攻击

安全客

9 months ago

安全客

£1M Lost as UK Social Media and Email Account Hacks Skyrocket

Information Security Magazine

9 months ago

Action Fraud reported a spike in social media and email account hacks in 2024, resulting in losses of nearly £1m

⚡ THN Weekly Recap: Router Hacks, PyPI Attacks, New Ransomware Decryptor, and More

The Hackers News

9 months ago

From sophisticated nation-state campaigns to stealthy malware lurking in unexpected places, this week’s cybersecurity landscape is a reminder that attackers are always evolving. Advanced threat groups are exploiting outdated hardware, abusing legitimate tools for financial fraud, and finding new ways to bypass security defenses. Meanwhile, supply chain threats are on the rise, with open-source

The Hacker News

CVE-2024-46662

CVE Trends

9 months ago

Currently trending CVE - Hype Score: 1 - A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiManager versions 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to escalation of privilege via specifically crafted packets