LVMH’s Loro Piana placed under court administration in Italy over labor exploitation
By Reuters Published July 14, 2025 An Italian court has placed LVMH group’s high-end Italian…
GeoVision ASManager Windows Application 6.1.2.0 – Remote Code Execution (RCE)
# Exploit Title: GeoVision ASManager Windows Application 6.1.2.0 – Remote Code Execution (RCE) # Date: 19-MAR-2025 # Exploit Author: Giorgi Dograshvili [DRAGOWN] # Vendor Homepage: https://www.geovision.com.tw/ # Software Link: https://www.geovision.com.tw/download/product/ # Version: 6.1.2.0 or less # Tested on: Windows 10 | Kali Linux # CVE : CVE-2025-26264 # PoC: https://github.com/DRAGOWN/CVE-2025-26264 GeoVision GV-ASWeb with the…
Alexis Ohanian’s Next Social Platform Has One Rule: Don’t Act Like an Asshole
We’re going to talk a little bit about that later. Now I hate to do this, but you did work at Pizza Hut in high school. I did. Nothing I hate about that. I worked at Tim Horton’s, so I agree. Favorite pizza topping? Jalapenos. Bold. First video game purchase? Oh my God. With my…
The common cold’s unexpected superpower against COVID
A new study led by researchers at National Jewish Health has found that recent infection with the common cold — often caused by rhinoviruses — may offer temporary protection against infection with SARS-CoV-2, the virus that causes COVID-19. The research provides fresh insight into why children are less likely than adults to develop symptoms and…
GeoVision ASManager Windows Application 6.1.2.0 – Credentials Disclosure
# Exploit Title: GeoVision ASManager Windows Application 6.1.2.0 – Credentials Disclosure # Date: 19-MAR-2025 # Exploit Author: Giorgi Dograshvili [DRAGOWN] # Vendor Homepage: https://www.geovision.com.tw/ # Software Link: https://www.geovision.com.tw/download/product/ # Version: 6.1.2.0 or less # Tested on: Windows 10 | Kali Linux # CVE : CVE-2025-26263 # PoC: https://github.com/DRAGOWN/CVE-2025-26263 GeoVision ASManager Windows desktop application with…
StoryChief WordPress Plugin 1.0.42 – Arbitrary File Upload
# Exploit Title: StoryChief WordPress Plugin 1.0.42 – Arbitrary File Upload # Exploit Author: xpl0dec # Vendor Homepage: https://www.storychief.io/wordpress-content-scheduler # Software Link: https://github.com/Story-Chief/wordpress/ # Version: <= 1.0.42 # Tested on: Linux # CVE : CVE-2025-7441 # CVSS Score : 9.8 # Step to reproduce : # 1. Create a file with the .php…
Ivanti Endpoint Manager Mobile 12.5.0.0 – Authentication Bypass
#!/usr/bin/env python3 # Exploit Title: Ivanti Endpoint Manager Mobile 12.5.0.0 – Authentication Bypass # Google Dork: inurl:/mifs “Ivanti” OR “EPM” OR “Endpoint Manager” # Date: 2025-01-21 # Exploit Author: [Your Name] (https://github.com/[your-username]) # Vendor Homepage: https://www.ivanti.com/ # Software Link: https://www.ivanti.com/products/endpoint-manager # Version: < 2025.1 # Tested on: Ubuntu 22.04 LTS, Python 3.10 # CVE:…
Common painkillers like Advil and Tylenol supercharge antibiotic resistance
Ibuprofen and acetaminophen (paracetamol) are common over-the-counter medications that many of us reach for when we’re sick. But new research from the University of South Australia shows that these trusted staples are quietly fuelling one of the world’s biggest health threats: antibiotic resistance. In the first study of its kind, researchers found that ibuprofen and…
Lingdang CRM 8.6.4.7 – SQL Injection
# Exploit Title: Lingdang CRM 8.6.4.7 – SQL Injection # Google Dork: N/A # Date: 2025-08-19 # Exploit Author: Beatriz Fresno Naumova # Vendor: Shanghai Lingdang Information Technology) # Software Link: (N/A – commercial product) # Version: <= 8.6.4.7 (fixed in 8.6.5.x per vendor advisory) # Tested on: Generic LAMP stack, PHP 7/8 (PoC uses…
Birth Chart Compatibility WordPress Plugin 2.0 – Full Path Disclosure
/* * Exploit Title : Birth Chart Compatibility WordPress Plugin 2.0 – Full Path Disclosure * Author : Byte Reaper * Telegram : @ByteReaper0 * CVE : CVE-2025-6082 * Software Link : https://frp.wordpress.org/plugins/birth-chart-compatibility/ * Description : Proof‑of‑Concept exploits the Full Path Disclosure bug in the * “Birth Chart Compatibility” WordPress plugin (<=v2.0). It sends *…
Forgotten rock in Japan reveals 220-million-year-old ichthyosaur fossil
A vertebrate fossil discovered in a rock from the Late Triassic period (approximately 220 million years ago) in Takahashi City, Okayama Prefecture, has been confirmed through joint research by Okayama University of Science and other institutions to be the first ichthyosaur fossil ever found in western Japan. The discovery was announced by Professor Takafumi Kato…
