16 matches found
Command Execution Vulnerability in 4A Unified Security Control Platform of Beijing Qixingchen Information Security Technology Co.
Beijing Qixingchen Information Security Technology Co., Ltd. is an enterprise mainly engaged in science and technology promotion and application service industry. A command execution vulnerability exists in the 4A Unified Security Control Platform of Beijing Qixingchen Information Security...
Iranian Hackers Launch Sophisticated Attacks Targeting Israel with PowerLess Backdoor
An Iranian nation-state threat actor has been linked to a new wave of phishing attacks targeting Israel that's designed to deploy an updated version of a Windows backdoor called PowerLess. Cybersecurity firm Check Point is tracking the activity cluster under its mythical creature handle Educated...
Phoswap Token gas has a logic flaw vulnerability
Vulnerability mining supported by the Ministry of Science and Technology National Key R&D Program Topic 2020YFB1005802 The token contract freeze function will gradually increase its gas consumption when it is called multiple times, and when the gas consumption is extremely large, the running cost...
SQL Injection Vulnerability in Residency Capacity Building System of Chongqing Yuanqiu Technology Co.
Chongqing Yuanqiu Science and Technology Co., Ltd. is an independent legal entity under the Southwest Information Center of the Ministry of Science and Technology, which is a large-scale intelligence service organization engaged in the collection of medical information and the development of...
Command Execution Vulnerability in Tongda OA (CNVD-2021-21890)
Tongda OA Office Anywhere Network Intelligent Office System is a collaborative office automation software independently developed by Beijing Tongda Science and Technology Co., Ltd. and China's enterprise management practices combined with the formation of a comprehensive management office platfor...
SQL Injection Vulnerability in the Website Building System of Shaanxi Yahuang Science and Technology Co.
Ltd. is a professional networking company for Xi'an website construction, Xi'an website construction and design, Xi'an website construction and promotion, Xi'an website construction and optimization. Ltd. website building system suffers from SQL injection vulnerability, which can be exploited by...
BJDCTF2020_March
本届BJDCTF由江苏科技大学、北京工业大学、西南民族大学、杭州师范大学、 江苏大学、湖南工业大学(排名不分先后)联合举办,刷题就到buu,感谢赵总大力支持...
Science Fiction Writers Helping Imagine Future Threats
The French army is going to put together a team of science fiction writers to help imagine future threats. Leaving aside the question of whether science fiction writers are better or worse at envisioning nonfictional futures, this isn't new. The US Department of Homeland Security did the same thi...
Feds accuse Chinese firm of stealing trade secrets of US tech giant
By Uzair Amir The US Justice Department has accused China to be involved in industrial espionage. According to a press release from the department, the Chinese government has made memory chips that store data its centralized science and technology strategy only to cover its espionage activities. ...
JVN#01775119: Denshi Nyusatsu Check Tool provided by Ministry of Education, Culture, Sports, Science and Technology may insecurely load Dynamic Link Libraries
Denshi Nyusatsu Check Tool provided by Ministry of Education, Culture, Sports, Science and Technology MEXT contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privilege of the user running...
DeleGate 9.9.13 - Privilege Escalation
Exploit for linux platform in category local exploits Title: Local root vulnerability in DeleGate v9.9.13 Author: Larry W. Cashdollar, @larry0 Date: 2015-12-17 Advisory: http://www.vapidlabs.com/advisory.php?v=159 Download Sites: http://delegate.hpcc.jp/delegate/ http://delegate.org/delegate/...
DeleGate 9.9.13 - Local Privilege Escalation
Title: Local root vulnerability in DeleGate v9.9.13 Author: Larry W. Cashdollar, @larry0 Date: 2015-12-17 Advisory: http://www.vapidlabs.com/advisory.php?v=159 Download Sites: http://delegate.hpcc.jp/delegate/ http://delegate.org/delegate/ Vendor: National Institute of Advanced Industrial Science...
Heze city science and technology information network suffered HackingTeam leakage of 0day vulnerabilities attack-exploit warning-the black bar safety net
For the attacker, the HackingTeam data leak certainly gives them a“spring”. Attackers in the data leak the next day it will be baked 0day vulnerabilities added to the mainstream exploit kits. Copy the leaked 0day attack HackingTeam leakage of various 0day information can be easily reused. In...
Godzilla Hacker Takes Down Several Pakistani Government Websites
While the rest of the world was engaged in cyber security and privacy, an Indian patriotic hacker targeted 43 major Pakistani Government official websites, including ‘President of Pakistan’, ‘Government of Pakistan’, 'Ministry of Defence’, and whole Ministry of Pakistan. Indian hacker Godzilla...
ChaSen -- buffer overflow
JVN iPedia reports: ChaSen provided by Nara Institute of Science and Technology is a software for morphologically analyzing Japanese. ChaSen contains an issue when reading in strings, which may lead to a buffer overflow. An arbitrary script may be executed by an attacker with access to a system...
Hindustan College Of Science And Technology - Database Hacked By Mohit Pande Aka Toshu
Hindustan College Of Science And Technology - Database Hacked By Mohit Pande Aka Toshu Hacked Site : www.hcst.edu.in/ Hacked Database : https://pastebin.com/YQ3EuGsc...