50.5K
COCVE, explained by cats. In collaboration with @aikidosecurity #cat #code #security #infosec #aikidosecurity
@coding.kitty
#Cve
Regardez vidéos Reels sur Cve de personnes du monde entier.
Regardez anonymement sans vous connecter.
Recherches Associées
30Reels en Tendance
(12)
33.1K
IHI asked my AI about a live CVE — and it delivered exploit logic, impact, and defense in seconds.
This is Drana-Infinity.
Built for bug hunters.
#cybersecurity #bugs #ethicalhackers #cve #drana
@iha089
36.4K
TEO programa de segurança Common Vulnerabilities and Exposures (CVE) teve seu financiamento federal suspenso nesta quarta-feira (16).
A organização sem fins lucrativos MITRE Corporation anunciou que o acordo com o governo dos Estados Unidos expirou, colocando em risco a disponibilidade da plataforma. Felizmente, a Agência de Segurança Cibernética e de Infraestrutura (CISA, na sigla em inglês) restabeleceu o fundo de investimento pouco tempo depois.
O CVE é uma das plataformas mais importantes no universo da segurança cibernética, sendo responsável por identificar, catalogar e descrever vulnerabilidades e brechas de segurança. O projeto adota um formato de fácil rastreabilidade, com o prefixo “CVE” seguido do ano de descoberta da falha e um número serial correspondente.
Por meio desses registros, é possível documentar brechas recém-descobertas e facilitar a comunicação com pesquisadores da área.
O TecMundo também utiliza frequentemente o projeto CVE, principalmente em reportagens relacionadas à cibersegurança. O ranqueamento e a avaliação de risco associados a cada falha permitem à redação compreender a gravidade do achado, contribuindo para uma cobertura mais precisa.
O projeto CVE é mantido pela MITRE Corporation, uma associação sem fins lucrativos dos Estados Unidos, mas também está sob o guarda-chuva do Departamento de Segurança Interna dos EUA.
Logo após o anúncio da MITRE, membros do conselho revelaram a criação da CVE Foundation, uma organização sem fins lucrativos dedicada exclusivamente à manutenção das atividades do programa.
Pouco depois, a agência americana CISA anunciou que continuará a financiar a agora independente CVE Foundation. Informações adicionais sobre essa nova parceria ainda não foram reveladas.
Quer continuar por dentro das atualizações mais importantes do universo da cibersegurança? Acompanhe o TecMundo nas redes sociais!
#Tech #Notícia #Tecnologia #CISA #CVE #Cibersegurança #MITRE
@tecmundo
34.9K
D3CVE-2023-40028 is the equivalent of wondering if anyone’s watching the house while the doors are wide open.
It hits Ghost CMS version 5.58 and gives an authenticated admin a way to read any file on the server, just by abusing how the platform handles ZIP file imports.
Here’s how it works:
Ghost lets admins import ZIP archives through its admin API (/ghost/api/v3/admin/db). That’s meant for DB backups, but no one thought to check if the ZIP file might contain symlinks.
So if you’re logged in as an admin, you can create a ZIP with a symlink inside—say, one that points to /etc/passwd—and tuck it into a path Ghost expects, like content/images/2024/, naming it something innocent like cat.png.
Upload that ZIP via the API, and Ghost unzips it without batting an eye, blindly following the symlink. Now that symlinked file—whatever you pointed it to—is sitting there, publicly accessible under the image directory. Hit it with a GET request, and boom: you’re reading files off the server like it’s storytime.
No shell, no code exec, just a clean, silent file read. But with the right target file? That’s enough to pivot. Leak an SSH key, grab config creds etc etc. All because Ghost forgot to ask, “Hey… should I really be following this symlink?”
And yes, I’m aware the /etc/passwd file is pretty much only good for user enumeration—it was just an example, so don't @ me.
@d3ndr1t30x
16.9K
THIt’s the Rabbit of Caerbannog! 🩸🐇 (Yes, it’s THAT rabbit, iykyk) - via Vicarius
CVE‑2025‑50154 is a zero-click Windows File Explorer spoofing vulnerability. Public research indicates it may coerce NTLM authentication or fetch remote content via crafted paths or shortcuts, potentially deceiving users and leaking credentials for follow-on compromise.
Recommended actions:
- Apply Microsoft’s August 2025 security update: it fully addresses this zero-click NTLM leak and related spoofing avenues.
- Disable NTLM authentication in environments that use Kerberos, or limit NTLM usage to trusted scenarios only.
Vicarius Labs has created a mitigation script to apply temporary protection:
🔗 https://www.vicarius.io/vsociety/posts/cve-2025-50154-mitigation-script-zero-click-windows-file-explorer-spoofing-vulnerability
Running this script reduces exposure to CVE‑2025‑50154, providing immediate defense until the security updates from Microsoft can be applied.
#cybersecurity
@thecybersecurityhub
5.7K
BO@jrockwitya_cveboss CVE is your MS Boys Bond Hoop Dreams Champions 🔥
•
•
•
•
•
#Ballers #AIP #AAU #aaubasketball #BONDBASKETBALL #anygymishome #USSSA #BallersParadise #HoopState
#BONDEVENTS
#BallisLife #NCBasketball #Basketball #youthbasketballtraining #basketballislife #prime #explore
@bondeventsmedia
5.7K
HI🔍💻 Timely & transparent vulnerability reporting is key to a safer digital world! 🌐✨
Did you know that Hikvision is proud to be a CVE Partner? With our commitment to responsible disclosure, we ensure your security is top-notch. When vulnerabilities arise, our experts quickly spring into action! 🛡️
Check out our HSRC for insights & stay protected: https://www.hikvision.com/en/support/cybersecurity/report-an-issue/
Learn more about our standards:
https://www.hikvision.com/en/support/cybersecurity/standards-and-certifications/
💪🔒
.
.
.
.
#hikvision #cybersafe
#CyberSecurity #CVEPartner
@hikvision
1.2K
DN🗞️ Știrile săptămânii din #cybersecurity sunt aici: https://www.dnsc.ro/citeste/stirile-saptamanii-din-cybersecurity
🤖 „Vibe hacking”: cum folosesc hackerii AI pentru a face atacurile mai ușoare în 2026
🚨 Alertă: CVE-2026-21858 Vulnerabilitate critică în n8n
⚡ Taiwan anunță că atacurile cibernetice ale Chinei asupra sectorului energetic au crescut de zece ori
🪝 Microsoft avertizează asupra atacurilor de phishing avansate care vizează conturile Office 365 slab configurate
🗓️ Predicții de securitate cibernetică pentru 2026: AI, atacuri mai inteligente și accent pe reziliență
🔐 Viitorul securității cibernetice include „angajați” non-umani
🇷🇺 Hackeri pro-ruși folosesc Viber pentru a ataca armata și instituțiile statului ucrainean
🎭 Cum a făcut inteligența artificială escrocheriile mai convingătoare în 2025
🖥️ Cisco remediază o vulnerabilitate ISE cu cod de exploatare public
📩 Hackeri asociați Chinei ar fi compromis e-mailurile unor comisii-cheie din Congresul SUA
#DNSC #CyberSecurity #CyberNews
@dnsc.ro
1.5K
CFFlorida Attorney General James Uthmeier announced the creation of an online portal through which people can report "calls for violence” or threats of violence that they observe.
The portal is on the attorney general's website and can be found at myfloridalegal.com/cve, which stands for "Combat Violent Extremism."
Full story at link in bio!
#floridaminute
@cfpublicmedia
64.1K
RECVE Inspection. Problems!!!
#cve #cmv #commercialvehicle #18wheeler #texasdad
@reelsoftrucking
75.0K
DAYour React/Next.js App Might Be at Risk 👀
.
.
.
[react security issue, nextjs security update, cve-2025-55182, react server components bug, react rce vulnerability, nextjs patch update, react 19 problem, web security alert, javascript security news, react exploit fix]
.
.
.
#reactjs #nextjs #websecurity #cybersecurity #cve2025 #codingcommunity #webdevelopment #tech #technews #fullstackdeveloper #fyp #foryou #viralreels #viral
@davcodes_
109.2K
SHEu tô apaixonada nessa compra que a @gheysa_andrade fez no meu app! 😍📱 Quero já ver mais dicas de achadinhos! 💡
Já envia para sua amiga que vai amar esses produtinhos!
Sanduicheira ID: FNB-SVQ-CVE
Mini Processador ID: FXG-VMY-VNE
Secador De Cabelos ID: DDF-UNN-UYE
#Shopee22
@shopee_br
✨ Guide de Découverte #Cve
Instagram héberge thousands of publications sous #Cve, créant l'un des écosystèmes visuels les plus dynamiques de la plateforme.
#Cve est l'une des tendances les plus engageantes sur Instagram en ce moment. Avec plus de thousands of publications dans cette catégorie, des créateurs comme @shopee_br, @davcodes_ and @reelsoftrucking mènent la danse avec leur contenu viral. Parcourez ces vidéos populaires anonymement sur Pictame.
Qu'est-ce qui est tendance dans #Cve ? Les vidéos Reels les plus regardées et le contenu viral sont présentés ci-dessus.
Catégories Populaires
📹 Tendances Vidéo: Découvrez les derniers Reels et vidéos virales
📈 Stratégie de Hashtag: Explorez les options de hashtags tendance pour votre contenu
🌟 Créateurs en Vedette: @shopee_br, @davcodes_, @reelsoftrucking et d'autres mènent la communauté
Questions Fréquentes Sur #Cve
Avec Pictame, vous pouvez parcourir tous les reels et vidéos #Cve sans vous connecter à Instagram. Aucun compte requis et votre activité reste privée.
Analyse de Performance
Analyse de 12 reels
💡 Posts top moyennent 74.7K vues (2.1x au-dessus moyenne)
Publiez régulièrement 3-5x/semaine aux heures actives
Conseils de Création de Contenu et Stratégie
💡 Le meilleur contenu obtient plus de 10K vues - concentrez-vous sur les 3 premières secondes
📹 Les vidéos verticales de haute qualité (9:16) fonctionnent mieux pour #Cve - utilisez un bon éclairage et un son clair
✍️ Légendes détaillées avec histoire fonctionnent bien - longueur moyenne 640 caractères
✨ Beaucoup de créateurs vérifiés sont actifs (67%) - étudiez leur style de contenu
Recherches Populaires Liées à #Cve
🎬Pour les Amateurs de Vidéo
Cve ReelsRegarder Cve Vidéos
📈Pour les Chercheurs de Stratégie
Cve Hashtags TendanceMeilleurs Cve Hashtags
🌟Explorer Plus
Explorer Cve#what is the notepad exploit cve 2026 20841#cve shanmugam#jade cve#cve 2026 3909#cve clinica#cve 2025#cve 2025 55182#cve s cve r