Cybersecurity information flow

WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient output escaping on the display name. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. In addition, it also makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that have the comment block present and display the comment author's avatar.
[GitHub]CVE-2024-4439 PoC

" WordPress核心在各个版本直至6.5.2中，由于显示名称的输出转义不足，容易受到存储跨站脚本攻击（Stored Cross-Site Scripting）。这使得具有贡献者级别及以上权限的认证攻击者能够在用户访问注入的页面时执行任意Web脚本。此外，它还允许未认证的攻击者在具有评论区块且显示评论作者头像的页面中注入任意Web脚本。\n[GitHub]CVE-2024-4439证明概念（Proof of Concept）"

WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6.5.2 due to insufficient output escaping on the display name. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. In addition, it also makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that have the comment block present and display the comment author's avatar.
[GitHub]The provided exploit code leverages a stored Cross-Site Scripting (XSS) vulnerability (CVE-2024-4439) in WordPress Core versions up to 6.5.1.

" WordPress Core在各个版本直至6.5.2中，由于显示名称的输出转义不足，容易受到存储型跨站脚本攻击（Stored Cross-Site Scripting）的漏洞影响，该漏洞位于用户昵称旁的头像区块。这使得具有投稿者权限及以上认证的攻击者可以在用户访问注入的页面时，注入任意web脚本并执行。此外，它还允许未认证的攻击者在具有评论区块且显示评论作者头像的页面中注入任意web脚本。\n[GitHub]提供的攻击代码利用了WordPress Core版本直至6.5.1中的存储型跨站脚本（XSS）漏洞（CVE-2024-4439）。"

月海 (Sea Moon) 是一款 FaaS/BaaS 实现的 Serverless 网络工具

Okta Verify and Okta FastPass Abuse Tool

SpecterOps Presentations

Resecurity found a massive leak involving the exposure of personally identifiable information (PII) of over five million citizens of El Salvador on the Dark Web. Resecurity identified a massive leak of the personally identifiable information (PII) of over five million citizens from El Salvador on the Dark Web, impacting more than 80% of the country’s […]

" 安全公司Resecurity在暗网上发现了一起大规模数据泄露事件，涉及超过500万萨尔瓦多公民的个人信息（PII）。Resecurity在暗网上发现了一起大规模的个人信息（PII）泄露事件，涉及超过500万萨尔瓦多公民，影响了该国超过80%的人口 […]"

This is Part 10 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The full series can be found here.

" 这是我持续更新的一个项目，旨在通过30篇每周博客文章涵盖30个网络安全主题。您可以在此处找到整个系列。"

X Certificate and Key management

For the latest discoveries in cyber research for the week of 29th April, please download our Threat_Intelligence Bulletin. TOP ATTACKS AND BREACHES In a joint statement with Germany and NATO, the Czech Republic uncovered a cyber espionage campaign by Russian state affiliated actor APT28. These cyber-attacks targeted Czech institutions using a new vulnerability in Microsoft […]
The post 6th May – Threat Intelligence Report appeared first on Check Point Research.

" 为进一步了解4月29日当周的网络研究最新成果，请下载我们的《威胁情报公报》。 TOP攻击和泄露事件：在与德国和北约联合声明中，捷克共和国揭露了俄罗斯国家关联实体APT28发起的网络间谍活动。这些网络攻击针对捷克机构利用了微软的一个新漏洞 […]\n该帖子首发于Check Point研究部。"

A highly concerning security loophole was recently discovered in a WordPress plugin called "Email Subscribers by Icegram Express," a popular tool utilized by a vast network of over 90,000+ websites. Officially designated as CVE-2024-2876 with a CVSS score of 9.8 (critical), the vulnerability represents a significant threat as it exposes numerous websites to potential attacks. [...]
The post Tracking CVE-2024-2876: Why does the latest WordPress exploit compromise over 90,000 websites? appeared first on Wallarm.

" 近日，在名为“Email Subscribers by Icegram Express”的WordPress插件中发现了一个高度令人担忧的安全漏洞。这个漏洞被正式指定为CVE-2024-2876，CVSS得分为9.8（危急），对众多网站构成重大威胁，因为该漏洞暴露了无数网站可能受到攻击的风险 [...]\n本文首次出现在Wallarm网站上，标题为“追踪CVE-2024-2876：最新WordPress漏洞为何会影响超过90,000个网站？”。"

微软近日发现了一种名为“Dirty Stream”的攻击技术，可能允许黑客控制应用程序并窃取敏感数据，影响多个广泛使用的Android应用程序，数十亿设备面临风险。据微软公告，“Dirty Stream”是一种与路径遍历相关的攻击模式，该漏洞可能被恶意应用程序利用来覆盖易受攻击应用程序主目录中的文件 ...

Make your windows vibrant.

小红书链接提取/作品采集工具：提取账号发布、收藏、点赞作品链接；提取搜索结果作品、用户链接；采集小红书作品信息；提取小红书作品下载地址；下载小红书无水印作品文件！

哥斯拉webshell管理工具二次开发规避流量检测设备

C/C++ source obfuscator for antivirus bypass

In which I postponed writing until the very last hour. I’m still feeling fairly sick, unfortunately, and my cough has been keeping me up late at night. Some personal finance updates, a mailing list, and why the datalist HTML element is super cool and also terrible.
Debt Free (Again)
This week I submitted my last payment on my car, paying it off about 2 years ahead of schedule. This is exciting for me for a couple reasons – I hate being in debt, even though my loan was a very affordable rate, and I like freeing up the cash flow for other things. I bought my car after first getting debt free back in 2021 when I paid off my final student loan debt. It was a fun purchase since I didn’t need to drive for anything but recreation, and I was okay with taking on a car loan as my only loan.
I’ve spent a bit modifying the car since I bought it, but now that I’ve paid it off, I feel more comfortable spending on additional modifications. I have Verus Engineering louvers in the hood, a carbon miata wing on the back, and a 

介绍了如何绕过SSL Pinning和拦截Flutter应用程序中的HTTP请求

Reporting API是一个新兴的网络标准，为网站访问者的浏览器上发生的问题提供了一种通用的报告机制。文章介绍了Google安全团队如何使用Reporting API检测潜在问题，并介绍了开源解决方案，可以轻松复制Google的处理报告和采取行动的方法。

介绍了一种新的0day技术，用于绕过AMSI，其中包括了绕过AMSI的漏洞的详细分析以及在PowerShell 5.1和PowerShell 7.4中绕过AMSI的POC代码。

NTLM Relay Gat是一个强大的工具，用于自动化利用NTLM中继漏洞，提供了多线程支持、列举SMB共享、执行命令等功能。

讨论了使用Frida工具对内存进行分析和修补的方法

介绍了Pwn2Own比赛，这是一个关于漏洞和攻击的知名网络安全活动。

通过对恶意远程访问工具Android/Phoenix的逆向工程分析，揭示了其广泛监视受害者手机的恶意行为，包括窃取屏幕截图、解锁手势等