50.5K
COCVE, explained by cats. In collaboration with @aikidosecurity #cat #code #security #infosec #aikidosecurity
@coding.kitty
#Cve
Schauen Sie sich Reels-Videos über Cve von Menschen aus aller Welt an.
Anonym ansehen ohne Anmeldung.
Ähnliche Suchen
30Trending Reels
(12)
33.1K
IHI asked my AI about a live CVE — and it delivered exploit logic, impact, and defense in seconds.
This is Drana-Infinity.
Built for bug hunters.
#cybersecurity #bugs #ethicalhackers #cve #drana
@iha089
36.4K
TEO programa de segurança Common Vulnerabilities and Exposures (CVE) teve seu financiamento federal suspenso nesta quarta-feira (16).
A organização sem fins lucrativos MITRE Corporation anunciou que o acordo com o governo dos Estados Unidos expirou, colocando em risco a disponibilidade da plataforma. Felizmente, a Agência de Segurança Cibernética e de Infraestrutura (CISA, na sigla em inglês) restabeleceu o fundo de investimento pouco tempo depois.
O CVE é uma das plataformas mais importantes no universo da segurança cibernética, sendo responsável por identificar, catalogar e descrever vulnerabilidades e brechas de segurança. O projeto adota um formato de fácil rastreabilidade, com o prefixo “CVE” seguido do ano de descoberta da falha e um número serial correspondente.
Por meio desses registros, é possível documentar brechas recém-descobertas e facilitar a comunicação com pesquisadores da área.
O TecMundo também utiliza frequentemente o projeto CVE, principalmente em reportagens relacionadas à cibersegurança. O ranqueamento e a avaliação de risco associados a cada falha permitem à redação compreender a gravidade do achado, contribuindo para uma cobertura mais precisa.
O projeto CVE é mantido pela MITRE Corporation, uma associação sem fins lucrativos dos Estados Unidos, mas também está sob o guarda-chuva do Departamento de Segurança Interna dos EUA.
Logo após o anúncio da MITRE, membros do conselho revelaram a criação da CVE Foundation, uma organização sem fins lucrativos dedicada exclusivamente à manutenção das atividades do programa.
Pouco depois, a agência americana CISA anunciou que continuará a financiar a agora independente CVE Foundation. Informações adicionais sobre essa nova parceria ainda não foram reveladas.
Quer continuar por dentro das atualizações mais importantes do universo da cibersegurança? Acompanhe o TecMundo nas redes sociais!
#Tech #Notícia #Tecnologia #CISA #CVE #Cibersegurança #MITRE
@tecmundo
34.9K
D3CVE-2023-40028 is the equivalent of wondering if anyone’s watching the house while the doors are wide open.
It hits Ghost CMS version 5.58 and gives an authenticated admin a way to read any file on the server, just by abusing how the platform handles ZIP file imports.
Here’s how it works:
Ghost lets admins import ZIP archives through its admin API (/ghost/api/v3/admin/db). That’s meant for DB backups, but no one thought to check if the ZIP file might contain symlinks.
So if you’re logged in as an admin, you can create a ZIP with a symlink inside—say, one that points to /etc/passwd—and tuck it into a path Ghost expects, like content/images/2024/, naming it something innocent like cat.png.
Upload that ZIP via the API, and Ghost unzips it without batting an eye, blindly following the symlink. Now that symlinked file—whatever you pointed it to—is sitting there, publicly accessible under the image directory. Hit it with a GET request, and boom: you’re reading files off the server like it’s storytime.
No shell, no code exec, just a clean, silent file read. But with the right target file? That’s enough to pivot. Leak an SSH key, grab config creds etc etc. All because Ghost forgot to ask, “Hey… should I really be following this symlink?”
And yes, I’m aware the /etc/passwd file is pretty much only good for user enumeration—it was just an example, so don't @ me.
@d3ndr1t30x
16.9K
THIt’s the Rabbit of Caerbannog! 🩸🐇 (Yes, it’s THAT rabbit, iykyk) - via Vicarius
CVE‑2025‑50154 is a zero-click Windows File Explorer spoofing vulnerability. Public research indicates it may coerce NTLM authentication or fetch remote content via crafted paths or shortcuts, potentially deceiving users and leaking credentials for follow-on compromise.
Recommended actions:
- Apply Microsoft’s August 2025 security update: it fully addresses this zero-click NTLM leak and related spoofing avenues.
- Disable NTLM authentication in environments that use Kerberos, or limit NTLM usage to trusted scenarios only.
Vicarius Labs has created a mitigation script to apply temporary protection:
🔗 https://www.vicarius.io/vsociety/posts/cve-2025-50154-mitigation-script-zero-click-windows-file-explorer-spoofing-vulnerability
Running this script reduces exposure to CVE‑2025‑50154, providing immediate defense until the security updates from Microsoft can be applied.
#cybersecurity
@thecybersecurityhub
5.7K
BO@jrockwitya_cveboss CVE is your MS Boys Bond Hoop Dreams Champions 🔥
•
•
•
•
•
#Ballers #AIP #AAU #aaubasketball #BONDBASKETBALL #anygymishome #USSSA #BallersParadise #HoopState
#BONDEVENTS
#BallisLife #NCBasketball #Basketball #youthbasketballtraining #basketballislife #prime #explore
@bondeventsmedia
5.7K
HI🔍💻 Timely & transparent vulnerability reporting is key to a safer digital world! 🌐✨
Did you know that Hikvision is proud to be a CVE Partner? With our commitment to responsible disclosure, we ensure your security is top-notch. When vulnerabilities arise, our experts quickly spring into action! 🛡️
Check out our HSRC for insights & stay protected: https://www.hikvision.com/en/support/cybersecurity/report-an-issue/
Learn more about our standards:
https://www.hikvision.com/en/support/cybersecurity/standards-and-certifications/
💪🔒
.
.
.
.
#hikvision #cybersafe
#CyberSecurity #CVEPartner
@hikvision
1.2K
DN🗞️ Știrile săptămânii din #cybersecurity sunt aici: https://www.dnsc.ro/citeste/stirile-saptamanii-din-cybersecurity
🤖 „Vibe hacking”: cum folosesc hackerii AI pentru a face atacurile mai ușoare în 2026
🚨 Alertă: CVE-2026-21858 Vulnerabilitate critică în n8n
⚡ Taiwan anunță că atacurile cibernetice ale Chinei asupra sectorului energetic au crescut de zece ori
🪝 Microsoft avertizează asupra atacurilor de phishing avansate care vizează conturile Office 365 slab configurate
🗓️ Predicții de securitate cibernetică pentru 2026: AI, atacuri mai inteligente și accent pe reziliență
🔐 Viitorul securității cibernetice include „angajați” non-umani
🇷🇺 Hackeri pro-ruși folosesc Viber pentru a ataca armata și instituțiile statului ucrainean
🎭 Cum a făcut inteligența artificială escrocheriile mai convingătoare în 2025
🖥️ Cisco remediază o vulnerabilitate ISE cu cod de exploatare public
📩 Hackeri asociați Chinei ar fi compromis e-mailurile unor comisii-cheie din Congresul SUA
#DNSC #CyberSecurity #CyberNews
@dnsc.ro
1.5K
CFFlorida Attorney General James Uthmeier announced the creation of an online portal through which people can report "calls for violence” or threats of violence that they observe.
The portal is on the attorney general's website and can be found at myfloridalegal.com/cve, which stands for "Combat Violent Extremism."
Full story at link in bio!
#floridaminute
@cfpublicmedia
64.1K
RECVE Inspection. Problems!!!
#cve #cmv #commercialvehicle #18wheeler #texasdad
@reelsoftrucking
75.0K
DAYour React/Next.js App Might Be at Risk 👀
.
.
.
[react security issue, nextjs security update, cve-2025-55182, react server components bug, react rce vulnerability, nextjs patch update, react 19 problem, web security alert, javascript security news, react exploit fix]
.
.
.
#reactjs #nextjs #websecurity #cybersecurity #cve2025 #codingcommunity #webdevelopment #tech #technews #fullstackdeveloper #fyp #foryou #viralreels #viral
@davcodes_
109.2K
SHEu tô apaixonada nessa compra que a @gheysa_andrade fez no meu app! 😍📱 Quero já ver mais dicas de achadinhos! 💡
Já envia para sua amiga que vai amar esses produtinhos!
Sanduicheira ID: FNB-SVQ-CVE
Mini Processador ID: FXG-VMY-VNE
Secador De Cabelos ID: DDF-UNN-UYE
#Shopee22
@shopee_br
✨ #Cve Entdeckungsleitfaden
Instagram hostet thousands of Beiträge unter #Cve und schafft damit eines der lebendigsten visuellen Ökosysteme der Plattform.
#Cve ist derzeit einer der beliebtesten Trends auf Instagram. Mit über thousands of Beiträgen in dieser Kategorie führen Creator wie @shopee_br, @davcodes_ and @reelsoftrucking mit ihren viralen Inhalten. Durchsuchen Sie diese beliebten Videos anonym auf Pictame.
Was ist in #Cve im Trend? Die meistgesehenen Reels-Videos und viralen Inhalte sind oben zu sehen.
Beliebte Kategorien
📹 Video-Trends: Entdecken Sie die neuesten Reels und viralen Videos
📈 Hashtag-Strategie: Erkunden Sie trendige Hashtag-Optionen für Ihren Inhalt
🌟 Beliebte Creators: @shopee_br, @davcodes_, @reelsoftrucking und andere führen die Community
Häufige Fragen zu #Cve
Mit Pictame können Sie alle #Cve Reels und Videos durchsuchen, ohne sich bei Instagram anzumelden. Kein Konto erforderlich und Ihre Aktivität bleibt privat.
Content Performance Insights
Analyse von 12 Reels
💡 Top-Posts erhalten durchschnittlich 74.7K Aufrufe (2.1x über Durchschnitt)
Regelmäßig 3-5x/Woche zu aktiven Zeiten posten
Content-Erstellung Tipps & Strategie
💡 Top-Content erhält über 10K Aufrufe - fokussieren Sie auf die ersten 3 Sekunden
✍️ Detaillierte Beschreibungen mit Story funktionieren gut - durchschnittliche Länge 640 Zeichen
✨ Viele verifizierte Creator sind aktiv (67%) - studieren Sie deren Content-Stil
📹 Hochwertige vertikale Videos (9:16) funktionieren am besten für #Cve - gute Beleuchtung und klaren Ton verwenden
Beliebte Suchen zu #Cve
🎬Für Video-Liebhaber
Cve ReelsCve Videos ansehen
📈Für Strategie-Sucher
Cve Trend HashtagsBeste Cve Hashtags
🌟Mehr Entdecken
Cve Entdecken#what is the notepad exploit cve 2026 20841#cve shanmugam#cve artesia nm#cve clinica#cve 2025#cve 2025 55182#cve s cve r#cve pet