资讯

The Hacker News30 分钟
Over 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHub
GitGuardian uncovers 260,000 leaked Laravel APP_KEYs on GitHub, exposing over 600 apps to remote code execution.
Exploits for pre-auth Fortinet FortiWeb RCE flaw released, patch now
Proof-of-concept exploits have been released for a critical SQLi vulnerability in Fortinet FortiWeb that can be used to ...
The zero-day that could've compromised every Cursor and Windsurf user
Learn how one overlooked flaw in OpenVSX discovered by Koi Secureity could've let attackers hijack millions of dev machines ...
The Hacker News21 小时
Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)
Fortinet fixes a critical SQL injection vulnerability in FortiWeb (CVE-2025-25257), posing risks to database security.
For July, a ‘big, broad’ Patch Tuesday release
Microsoft this month pushed out 133 patches for a broad swatch of software and apps and plugged a zero-day flaw in SQL Server ...
JFrog finds MCP-related vulnerability, highlighting need for stronger focus on security in ...
JFrog disclosed CVE-2025-6514, a critical vulnerability in the mcp-remote project that allows for remote code execution.
Code smuggling loophole in Wing FTP is attacked
Attackers are exploiting a vulnerability in the Wing FTP data transfer software that allows malicious code to be injected.
LiveLaw18 小时
DigiPub Moves Karnataka High Court Supporting X Corp's Plea Against Take Down Orders, Says ...
While opposing the Centre's content takedown directives, DigiPub News India Foundation has moved the Karnataka High Court on ...