50.5K
COCVE, explained by cats. In collaboration with @aikidosecurity #cat #code #security #infosec #aikidosecurity
@coding.kitty
#Cve
Смотрите Reels видео о Cve от людей со всего мира.
Смотрите анонимно без входа.
Похожие запросы
30Трендовые Reels
(12)
33.1K
IHI asked my AI about a live CVE — and it delivered exploit logic, impact, and defense in seconds.
This is Drana-Infinity.
Built for bug hunters.
#cybersecurity #bugs #ethicalhackers #cve #drana
@iha089
36.4K
TEO programa de segurança Common Vulnerabilities and Exposures (CVE) teve seu financiamento federal suspenso nesta quarta-feira (16).
A organização sem fins lucrativos MITRE Corporation anunciou que o acordo com o governo dos Estados Unidos expirou, colocando em risco a disponibilidade da plataforma. Felizmente, a Agência de Segurança Cibernética e de Infraestrutura (CISA, na sigla em inglês) restabeleceu o fundo de investimento pouco tempo depois.
O CVE é uma das plataformas mais importantes no universo da segurança cibernética, sendo responsável por identificar, catalogar e descrever vulnerabilidades e brechas de segurança. O projeto adota um formato de fácil rastreabilidade, com o prefixo “CVE” seguido do ano de descoberta da falha e um número serial correspondente.
Por meio desses registros, é possível documentar brechas recém-descobertas e facilitar a comunicação com pesquisadores da área.
O TecMundo também utiliza frequentemente o projeto CVE, principalmente em reportagens relacionadas à cibersegurança. O ranqueamento e a avaliação de risco associados a cada falha permitem à redação compreender a gravidade do achado, contribuindo para uma cobertura mais precisa.
O projeto CVE é mantido pela MITRE Corporation, uma associação sem fins lucrativos dos Estados Unidos, mas também está sob o guarda-chuva do Departamento de Segurança Interna dos EUA.
Logo após o anúncio da MITRE, membros do conselho revelaram a criação da CVE Foundation, uma organização sem fins lucrativos dedicada exclusivamente à manutenção das atividades do programa.
Pouco depois, a agência americana CISA anunciou que continuará a financiar a agora independente CVE Foundation. Informações adicionais sobre essa nova parceria ainda não foram reveladas.
Quer continuar por dentro das atualizações mais importantes do universo da cibersegurança? Acompanhe o TecMundo nas redes sociais!
#Tech #Notícia #Tecnologia #CISA #CVE #Cibersegurança #MITRE
@tecmundo
34.9K
D3CVE-2023-40028 is the equivalent of wondering if anyone’s watching the house while the doors are wide open.
It hits Ghost CMS version 5.58 and gives an authenticated admin a way to read any file on the server, just by abusing how the platform handles ZIP file imports.
Here’s how it works:
Ghost lets admins import ZIP archives through its admin API (/ghost/api/v3/admin/db). That’s meant for DB backups, but no one thought to check if the ZIP file might contain symlinks.
So if you’re logged in as an admin, you can create a ZIP with a symlink inside—say, one that points to /etc/passwd—and tuck it into a path Ghost expects, like content/images/2024/, naming it something innocent like cat.png.
Upload that ZIP via the API, and Ghost unzips it without batting an eye, blindly following the symlink. Now that symlinked file—whatever you pointed it to—is sitting there, publicly accessible under the image directory. Hit it with a GET request, and boom: you’re reading files off the server like it’s storytime.
No shell, no code exec, just a clean, silent file read. But with the right target file? That’s enough to pivot. Leak an SSH key, grab config creds etc etc. All because Ghost forgot to ask, “Hey… should I really be following this symlink?”
And yes, I’m aware the /etc/passwd file is pretty much only good for user enumeration—it was just an example, so don't @ me.
@d3ndr1t30x
16.9K
THIt’s the Rabbit of Caerbannog! 🩸🐇 (Yes, it’s THAT rabbit, iykyk) - via Vicarius
CVE‑2025‑50154 is a zero-click Windows File Explorer spoofing vulnerability. Public research indicates it may coerce NTLM authentication or fetch remote content via crafted paths or shortcuts, potentially deceiving users and leaking credentials for follow-on compromise.
Recommended actions:
- Apply Microsoft’s August 2025 security update: it fully addresses this zero-click NTLM leak and related spoofing avenues.
- Disable NTLM authentication in environments that use Kerberos, or limit NTLM usage to trusted scenarios only.
Vicarius Labs has created a mitigation script to apply temporary protection:
🔗 https://www.vicarius.io/vsociety/posts/cve-2025-50154-mitigation-script-zero-click-windows-file-explorer-spoofing-vulnerability
Running this script reduces exposure to CVE‑2025‑50154, providing immediate defense until the security updates from Microsoft can be applied.
#cybersecurity
@thecybersecurityhub
5.7K
BO@jrockwitya_cveboss CVE is your MS Boys Bond Hoop Dreams Champions 🔥
•
•
•
•
•
#Ballers #AIP #AAU #aaubasketball #BONDBASKETBALL #anygymishome #USSSA #BallersParadise #HoopState
#BONDEVENTS
#BallisLife #NCBasketball #Basketball #youthbasketballtraining #basketballislife #prime #explore
@bondeventsmedia
5.7K
HI🔍💻 Timely & transparent vulnerability reporting is key to a safer digital world! 🌐✨
Did you know that Hikvision is proud to be a CVE Partner? With our commitment to responsible disclosure, we ensure your security is top-notch. When vulnerabilities arise, our experts quickly spring into action! 🛡️
Check out our HSRC for insights & stay protected: https://www.hikvision.com/en/support/cybersecurity/report-an-issue/
Learn more about our standards:
https://www.hikvision.com/en/support/cybersecurity/standards-and-certifications/
💪🔒
.
.
.
.
#hikvision #cybersafe
#CyberSecurity #CVEPartner
@hikvision
1.2K
DN🗞️ Știrile săptămânii din #cybersecurity sunt aici: https://www.dnsc.ro/citeste/stirile-saptamanii-din-cybersecurity
🤖 „Vibe hacking”: cum folosesc hackerii AI pentru a face atacurile mai ușoare în 2026
🚨 Alertă: CVE-2026-21858 Vulnerabilitate critică în n8n
⚡ Taiwan anunță că atacurile cibernetice ale Chinei asupra sectorului energetic au crescut de zece ori
🪝 Microsoft avertizează asupra atacurilor de phishing avansate care vizează conturile Office 365 slab configurate
🗓️ Predicții de securitate cibernetică pentru 2026: AI, atacuri mai inteligente și accent pe reziliență
🔐 Viitorul securității cibernetice include „angajați” non-umani
🇷🇺 Hackeri pro-ruși folosesc Viber pentru a ataca armata și instituțiile statului ucrainean
🎭 Cum a făcut inteligența artificială escrocheriile mai convingătoare în 2025
🖥️ Cisco remediază o vulnerabilitate ISE cu cod de exploatare public
📩 Hackeri asociați Chinei ar fi compromis e-mailurile unor comisii-cheie din Congresul SUA
#DNSC #CyberSecurity #CyberNews
@dnsc.ro
1.5K
CFFlorida Attorney General James Uthmeier announced the creation of an online portal through which people can report "calls for violence” or threats of violence that they observe.
The portal is on the attorney general's website and can be found at myfloridalegal.com/cve, which stands for "Combat Violent Extremism."
Full story at link in bio!
#floridaminute
@cfpublicmedia
64.1K
RECVE Inspection. Problems!!!
#cve #cmv #commercialvehicle #18wheeler #texasdad
@reelsoftrucking
75.0K
DAYour React/Next.js App Might Be at Risk 👀
.
.
.
[react security issue, nextjs security update, cve-2025-55182, react server components bug, react rce vulnerability, nextjs patch update, react 19 problem, web security alert, javascript security news, react exploit fix]
.
.
.
#reactjs #nextjs #websecurity #cybersecurity #cve2025 #codingcommunity #webdevelopment #tech #technews #fullstackdeveloper #fyp #foryou #viralreels #viral
@davcodes_
109.2K
SHEu tô apaixonada nessa compra que a @gheysa_andrade fez no meu app! 😍📱 Quero já ver mais dicas de achadinhos! 💡
Já envia para sua amiga que vai amar esses produtinhos!
Sanduicheira ID: FNB-SVQ-CVE
Mini Processador ID: FXG-VMY-VNE
Secador De Cabelos ID: DDF-UNN-UYE
#Shopee22
@shopee_br
✨ Руководство по #Cve
Instagram содержит thousands of публикаций под #Cve, создавая одну из самых ярких визуальных экосистем платформы.
Откройте для себя последний контент #Cve без входа в систему. Самые впечатляющие reels под этим тегом, особенно от @shopee_br, @davcodes_ and @reelsoftrucking, получают массовое внимание.
Что в тренде в #Cve? Самые просматриваемые видео Reels и вирусный контент представлены выше.
Популярные Категории
📹 Видео-тренды: Откройте для себя последние Reels и вирусные видео
📈 Стратегия хэштегов: Изучите трендовые варианты хэштегов для вашего контента
🌟 Избранные Создатели: @shopee_br, @davcodes_, @reelsoftrucking и другие ведут сообщество
Часто задаваемые вопросы о #Cve
С помощью Pictame вы можете просматривать все реелы и видео #Cve без входа в Instagram. Учетная запись не требуется, ваша активность остается приватной.
Анализ Эффективности
Анализ 12 роликов
💡 Лучшие посты получают в среднем 74.7K просмотров (в 2.1x раз выше среднего)
Публикуйте регулярно 3-5 раз/неделю в активные часы
Советы по Созданию Контента и Стратегия
💡 Лучший контент получает более 10K просмотров - сосредоточьтесь на первых 3 секундах
✍️ Подробные подписи с историей работают хорошо - средняя длина 640 символов
📹 Вертикальные видео высокого качества (9:16) лучше всего работают для #Cve - используйте хорошее освещение и четкий звук
✨ Многие верифицированные создатели активны (67%) - изучайте их стиль контента
Популярные поиски по #Cve
🎬Для Любителей Видео
Cve ReelsСмотреть Cve Видео
📈Для Ищущих Стратегию
Cve Трендовые ХэштегиЛучшие Cve Хэштеги
🌟Исследовать Больше
Исследовать Cve#what is the notepad exploit cve 2026 20841#cve shanmugam#cve artesia nm#cve clinica#cve 2025#cve 2025 55182#cve s cve r#cve pet