NA - CVE-2025-0851 - A path traversal issue in ZipUtils.unzip and...
A path traversal issue in ZipUtils.unzip and TarUtils.untar in Deep Java Library (DJL) on all platforms allows a bad actor to write files to arbitrary locations.
NA - CVE-2024-57665 - JFinalCMS 1.0 is vulnerable to SQL Injection in...
JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The cause of the vulnerability is that the title parameter is controllable and is concatenated directly...
High - CVE-2025-0843 - A vulnerability was found in needyamin Library...
A vulnerability was found in needyamin Library Card System 1.0. It has been classified as critical. Affected is an unknown function of the file admindashboard.php of the component Admin Panel. The...
The impetus for CrowdStrike's new professional services came from last year's Famous Chollima threat actors, which used fake IT workers to infiltrate organizations and steal data.
Lynx Ransomware Group 'Industrializes' Cybercrime With Affiliates
The ransomware group provides everything an affiliate could want to breach and attack victims, including a quality controlled recruitment system to engage even more criminals.