CVE-2024-58349

creationtimestamp| type| source ---|---|--- 2026-06-08 04:50:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnqv2o5l6e2o 2026-06-08 05:14:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnqwfrkn7r2y...

V2Board 安全漏洞

V2Board is a multi-user proxy service management panel for V2Board open source. A security vulnerability exists in V2Board 1.7.4 and earlier versions that originates from server authentication tokens being transmitted via GET parameters, which could lead to an attacker extracting the token from a...

CVE-2026-28536

creationtimestamp| type| source ---|---|--- 2026-03-05 07:30:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116175393685481196 2026-03-05 07:30:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mgcboltqp32m 2026-03-05 08:01:30+00:00| seen|...

CVE-2024-35250

creationtimestamp| type| source ---|---|--- 2024-10-15 19:03:54+00:00| seen| https://t.me/hackingbra/211 2024-10-16 16:20:14+00:00| published-proof-of-concept| https://t.me/realLulzSec/19688 2024-10-16 16:20:14+00:00| published-proof-of-concept| https://t.me/realLulzSec/2298 2024-10-16...

Microsoft Incident Response lessons on preventing cloud identity compromise

Microsoft observed a surge in cyberattacks targeting identities in 2023, with attempted password-based attacks increasing by more than tenfold in the first quarter of 2023 compared to the same period in 2022. Threat actors leverage compromised identities to achieve a significant level of access t...

Alerting Rules!: InsightIDR Raises the Bar for Visibility and Coverage

By George Schneider, Information Security Manager at Listrak I've worked in cybersecurity for over two decades, so I've seen plenty of platforms come and go—some even crash and burn. But Rapid7, specifically InsightIDR, has consistently performed above expectations. In fact, InsightIDR has become...

The vulnerability in the web interface for managing device information on the Cisco Common Services Platform Collector allows a malicious actor to enhance their privileges within the system.

The vulnerability of the Web interface for collecting device information on Cisco Common Services Platform Collector is related to an incorrect configuration of the system log. Exploiting this vulnerability allows a malicious actor to specify files other than logs as sources for the system log...

CVE-2021-42321

creationtimestamp| type| source ---|---|--- 2021-11-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=690 2021-11-10 07:32:55+00:00| seen| https://t.me/thehackernews/1642 2021-11-10 12:44:04+00:00| seen| https://t.me/cKure/7972 2021-11-10 13:12:56+00:00| seen|...

Dsiem - Security Event Correlation Engine For ELK Stack

Dsiem is a security event correlation engine for ELK stack, allowing the platform to be used as a dedicated and full-featured SIEM system. Dsiem provides OSSIM-style correlation for normalized logs/events, perform lookup/query to threat intelligence and vulnerability information sources, and...