{"uuid": "f6323165-7eaa-4cc4-b01a-3571c2c17f33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32461", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/539", "content": "Top Security News for Today\n\nApproach to mainframe penetration testing on z/OS. Deep dive into RACF  \nhttps://securelist.com/zos-mainframe-pentesting-resource-access-control-facility/116873/\n\nLateral Movement with code execution in the context of active user sessions  \nhttps://www.reddit.com/r/netsec/comments/1lunnbw/lateral_movement_with_code_execution_in_the/\n\nAbusing Windows, .NET quirks, and Unicode Normalization to exploit DNN (DotNetNuke)  \nhttps://www.reddit.com/r/netsec/comments/1luix11/abusing_windows_net_quirks_and_unicode/\n\n[CVE-2025-32461] Tiki Wiki CMS Groupware <= 28.3 Two SSTI Vulnerabilities  \nhttps://www.reddit.com/r/netsec/comments/1lukohx/cve202532461_tiki_wiki_cms_groupware_283_two_ssti/\n\nNew Attack on TLS: Opossum attack  \nhttps://www.reddit.com/r/netsec/comments/1lunm8t/new_attack_on_tls_opossum_attack/\n\nNew spyware strain steals data from Russian industrial companies  \nhttps://therecord.media/spyware-strain-steals-data-russian-industrial-sector\n\nBitchat MITM Flaw  \nhttps://www.reddit.com/r/netsec/comments/1lus5jg/bitchat_mitm_flaw/\n\nIranian ransomware group offers bigger payouts for attacks on Israel, US  \nhttps://therecord.media/iran-ransomware-group-pay2keyi2p-israel-us-targets\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-07-09T09:30:20.000000Z"}