漏洞 Vulnerability 【严重】宝塔面板数据库管理未授权访问漏洞通告 https://mp.weixin.qq.com/s/4p1A2YKsmJN68PTUo7nLlA 续集 | 再发通达OA多枚0day https://mp.weixin.qq.com/s/RlOpohHvjHv_Qg3mNgDCAQ 安全资讯 Security Information Debian LTS:DLA-2340-1:sqlite3安全更新 https://www.linuxsecurity.com/advisories/deblts/debian-lts-dla-2340-1-sqlite3-security-update-18-34-41?rss Debian:DSA-4747-1:icingaweb2安全更新 https://www.linuxsecurity.com/advisories/debian/debian-dsa-4747-1-icingaweb2-security-update-16-47-16?rss Mageia 2020-0341:chrony安全更新 https://www.linuxsecurity.com/advisories/mageia/mageia-2020-0341-chrony-security-update-17-28-07?rss 安全事件 Security Incident Freepik和Flaticon遭受数据泄露；830万用户受到影响 https://www.hackread.com/freepik-flaticon-data-breach-million-of-users-affected/ Uber前首席安全官因掩盖大规模数据泄露而被起诉 https://www.ehackingnews.com/2020/08/ubers-former-chief-security-officer.html 安全工具 Security Tools SL0T0X是一个用python3和flask编写的模块化web渗透测试接口 https://0x00sec.org/t/sl0t0x-is-a-modular-web-penetration-testing-interface-written-with-python3-and-flask/20756/4 Howl：一个开源的检测系统 http://arxiv.org/abs/2008.09606 Coqui-一个只记录银行相关网站的键盘记录器 https://0x00sec.org/t/coqui-a-keylogger-that-activates-for-only-banking-related-sites/22818/1