12 matches found
ASUS Router Path Traversal Vulnerability (CNVD-2025-29937)
ASUS Router is a router product and accompanying management application from ASUS, primarily used for wireless connectivity and management of home and business networks. A path traversal vulnerability exists in ASUS Router, which can be exploited by an attacker to cause the integrity of the devic...
UTT Progressive 750W Unauthenticated Password Change Vulnerability
The UTT Progress 750W is an enterprise-grade dual-band wireless router from Atech Technology UTT, which is aimed at SMB network environments. The UTT Progress 750W suffers from an unauthenticated password change vulnerability, which originates from an unauthenticated password change due to...
The vulnerability of the OBN component of the SAP NetWeaver Enterprise Portal software integration platform lies in the lack of authenticity verification for a critical function. This allows attackers to circumvent existing security restrictions.
The vulnerability of the OBN component in the SAP NetWeaver Enterprise Portal software integration platform is related to the lack of authenticity verification for a critical function. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions remotely...
Spyware disguises itself as Zoom downloads
Zoom video call software continues to be a staple in work environments. Despite a slow, post-lockdown easing back to the "old normal," many businesses still have remote workers, or people working in different geographies. It's no surprise then to see criminals continuing to abuse Zoom's popularit...
Shenzhen good business network studio Hsycms file upload vulnerability
Hsycms is an enterprise-level web content management system, written by PHP+MYSQL, using template separation technology to support the creation of many types of sites. Shenzhen Good Business Network Studio Hsycms has a file upload vulnerability that can be exploited by attackers to gain control o...
SQL Injection Vulnerability in Website Building System of Huizhou Business Network Co.
Huizhou Business Network Co., Ltd. is an emerging high-tech company specializing in Internet network engineering services. Huizhou Business Network Co., Ltd. building system there is a SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...
SQL Injection Vulnerability in a System of Anhui Business Network
Anhui Business Network Information Industry Co., Ltd. is a professional high-tech Internet technology service provider. A system SQL injection vulnerability in Anhui Business Network allows attackers to exploit this vulnerability to obtain data volume sensitive information...
SQL Injection Vulnerability in Huizhou Business Network CMS System
A SQL injection vulnerability exists in the Huizhou Business Network CMS system. An attacker is allowed to exploit the vulnerability to obtain sensitive database information...
SQL Injection Vulnerability in Anhui Business Network CMS System
A SQL injection vulnerability exists in the CMS system of Anhui Business Network. An attacker can exploit the vulnerability to obtain sensitive information from the database...
Anhui business network built Station system arbitrary file read vulnerability-vulnerability warning-the black bar safety net
Vulnerability file in the background file management: other/files.php Read the configuration file http://www.xxx.com/admin/other/files.php?edit=../../config.inc.php&copt=2 Read the linux system's account information http://www.xxx.com/admin/other/files.php?edit=../../../../../etc/passwd&copt=2...
Cyber Fraud: Tactics, Techniques and Procedures
Gone are the days when those BlackHat Hackers would tickle you for fun, Now they will poke you & take your diamonds without you even knowing anything about it until it's too late. Landscape in the Cyber underground has completely changed since then, making it more like well organized business...
Attackers Buying Own Data Centers for Botnets, Spam
The malware writers and criminals who run botnets for years have been using shared hosting platforms and so-called bulletproof hosting providers as bases of operations for their online crimes. But, as law enforcement agencies and security experts have moved to take these providers offline, the...