Cybersecurity information flow

Winter CMS version 1.2.2 suffers from a server-side template injection vulnerability.

Ubuntu Security Notice 6530-1 - It was discovered that HAProxy incorrectly handled URI components containing the hash character. A remote attacker could possibly use this issue to obtain sensitive information, or to bypass certain path_end rules.

Ubuntu Security Notice 6531-1 - Seiya Nakata and Yudai Fujiwara discovered that Redis incorrectly handled certain specially crafted Lua scripts. An attacker could possibly use this issue to cause heap corruption and execute arbitrary code. SeungHyun Lee discovered that Redis incorrectly handled specially crafted commands. An attacker could possibly use this issue to trigger an integer overflow, which might cause Redis to allocate impossible amounts of memory, resulting in a denial of service via an application crash.

Ubuntu Security Notice 6534-1 - It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service. Lin Ma discovered that the Netlink Transformation subsystem in the Linux kernel did not properly initialize a policy data structure, leading to an out-of-bounds vulnerability. A local privileged attacker could use this to cause a denial of service or possibly expose sensitive information.

Ubuntu Security Notice 6532-1 - Tavis Ormandy discovered that some AMD processors did not properly handle speculative execution of certain vector register instructions. A local attacker could use this to expose sensitive information. Yu Hao discovered that the UBI driver in the Linux kernel did not properly check for MTD with zero erasesize during device attachment. A local privileged attacker could use this to cause a denial of service.

Ubuntu Security Notice 6533-1 - Tom Dohrmann discovered that the Secure Encrypted Virtualization implementation for AMD processors in the Linux kernel contained a race condition when accessing MMIO registers. A local attacker in a SEV guest VM could possibly use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the io_uring subsystem in the Linux kernel contained a race condition, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service.

Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and resources. This issue covers the weeks from November 19th to December 3rd Intigriti News From my notebook
The post Bug Bytes #218 – Advent of Cyber, RCEs and hacking poems appeared first on Intigriti.

By Paweł Płatek We are publishing a set of custom CodeQL queries for Go and C. We have used them to find critical issues that the standard CodeQL queries would have missed. This new release of a continuously updated repository of CodeQL queries joins our public Semgrep rules and Automated Testing Handbook in an effort […]

Category: DDoS Attack Content: Proof of down time: https://check-host.cc/report?u=507bd0cd-fe64-4b50-8b32-e7c12cabfd84 Source: telegram Source Link: https://t.me/TheReturnees710/289 Threat Actor: The Returnees Victimology Country : Israel Industry : Package & Freight Delivery Organization : aeronautics defense systems ltd.

Category: Ransomware Content: Group claims to have access to company’s data and records. Instron manufactures and services is a company that manufactures wide range of cutting-edge materials testing equipment used by research scientists, design engineers, and quality control managers. The data accessed contains NDAs, datasheets, blueprints and drawings, firmware source codes for hardware etc. Source: […]

Category: DDoS Attack Content: Proof of down time: https://check-host.net/check-report/13b71374ke19 Source: telegram Source Link: https://t.me/T_GRAY_Hacker/1863 Threat Actor: THE ANONYMOUS BD Victimology Country : USA Industry : Software Development Organization : snapchat

Category: DDoS Attack Content: Proof of downtime: https://check-host.cc/report?u=77d03289-f781-49e7-9720-d4c1c4e1a64d Source: telegram Source Link: https://t.me/TheReturnees710/292 Threat Actor: The Returnees Victimology Country : Israel Industry : Defense & Space Organization : undefined

Category: Ransomware Content: Claimed data volume: 107 GB. Group claim to have access to Finance, HR, Legal, Personal etc. Source: tor Source Link: https://akiral2iz6a7qgd3ayp3l6yub7xx2uep76idk3u2kollpj5z3z636bad.onion/ Threat Actor: akira Victimology Country : Italy Industry : Food & Beverages Organization : compass group italia

Category: Ransomware Content: The threat actor claims to have access to Operational, business files, lots of payment files etc. Source: tor Source Link: https://akiral2iz6a7qgd3ayp3l6yub7xx2uep76idk3u2kollpj5z3z636bad.onion/ Threat Actor: akira Victimology Country : Netherlands Industry : Energy & Utilities Organization : aqualectra utility

Category: DDoS Attack Content: Proof of down time: https://check-host.net/check-report/13b768cak377 Source: telegram Source Link: https://t.me/noname05716/5416 Threat Actor: NoName057(16) Victimology Country : Finland Industry : Transportation & Logistics Organization : helsinki region transport

Category: DDoS Attack Content: Proof of down time: https://check-host.net/check-report/13b76b42kb9 Source: telegram Source Link: https://t.me/noname05716/5416 Threat Actor: NoName057(16) Victimology Country : Finland Industry : Financial Services Organization : op financial group

Category: DDoS Attack Content: Proof of down time: https://check-host.net/check-report/13b76e9fk9c0 Source: telegram Source Link: https://t.me/noname05716/5416 Threat Actor: NoName057(16) Victimology Country : Finland Industry : Banking & Mortgage Organization : bank of finland

Category: DDoS Attack Content: Group claims to have targeted London City Airport website. Source: telegram Source Link: https://t.me/Anonymous_v7X/38 Threat Actor: Anonymous Arabia Victimology Country : UK Industry : Airlines & Aviation Organization : london city airport

GnePro是开源项目GNE的付费版，能够实现如下功能：
输入任意文章页面的URL，返回标题/作者/正文/发布时间/图片/面包屑等一系列信息
支持异步加载文章页提取
支持上传自定义的HTML代码提取正文
支持自动检测网页编码
支持自动提取网页全部URL
在8个国家13万个新闻类网站进行测试,准确率高达90%
提取文章正文
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19

import requests
import json

url = "https://crawler.kingname.info/gne/crawl"

body = {
"url": "https://www.kingname.info/2023/10/17/rubbish/",
"js": False,
"charset": "auto"
}

headers = {
'token': '<TOKEN>',
}

response = requests.post(url, headers=headers, json=body)

response.json()


返回数据如下：
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91

{'title': '拒绝成为这样的程序员',
'publish_time_ts': 1697545236,
'publish_time': '2023-10-17 12:20:36',
'content': '产品经理这两天在跟我抱怨他们公司的一个码农。听的我火冒三丈，差点把跟了我十多年的搪瓷水杯砸烂。 正好在知识星球和微信群里面，有不少同学跟我咨询程序员的职业发展以及怎么应对三十岁危机。 借此机会，我准备用几篇文章来讲讲自己的经验和个人的观点。 有这样一批人，他们在大公司里工作了十几年，年龄一

不定期收集,整理和编写常用优秀软件和服务的 Dockerfile 文件. https://docker.ioiox.com

🌿 基于springboot的快速学习示例,整合自己遇到的开源框架,如：rabbitmq(延迟队列)、Kafka、jpa、redies、oauth2、swagger、jsp、docker、k3s、k3d、k8s、mybatis加解密插件、异常处理、日志输出、多模块开发、多环境打包、缓存cach…

自动化爬取并自动测试所有swagger接口