Aggregator
CVE-2025-26924 | Ohio Extra Plugin up to 3.4.7 on WordPress code injection
CVE-2025-26548 | Random Image Selector Plugin up to 2.4 on WordPress cross site scripting
CVE-2025-26555 | Debug-Bar-Extender Plugin up to 0.5 on WordPress cross site scripting
CVE-2025-26895 | maennchen1.de m1.DownloadList Plugin up to 0.19 on WordPress cross site scripting
CVE-2025-23744 | dvs11 Random Posts, Mp3 Player and ShareButton Plugin up to 1.4.1 on WordPress cross site scripting
VS Code Material Theme 不是惡意軟體——安全的線該畫在哪?
應該不少人都有跟到三週前 VS Code 上的知名套件 Material Theme 被微軟主動下架的新聞,那下架的理由是什麼呢?根據你得知這件事的消息來源以及自身個性,可能會有兩種回答:
- 它「疑似」含有惡意程式碼
- 它就是個惡意軟體
為什麼跟自身個性有關呢?因為就算消息來源接收到的是第一種,在種種條件的互相加持影響之下,你也很有可能解釋成第二種。
Week in review: NIST selects HQC for post-quantum encryption, 10 classic cybersecurity books
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: NIST selects HQC as backup algorithm for post-quantum encryption Last year, NIST standardized a set of encryption algorithms that can keep data secure from a cyberattack by a future quantum computer. Now, NIST has selected a backup algorithm that can provide a second line of defense for the task of general encryption, which safeguards internet traffic and stored data alike. … More →
The post Week in review: NIST selects HQC for post-quantum encryption, 10 classic cybersecurity books appeared first on Help Net Security.