凹语言支持 Chrome 内置 AI
chai2010 写道:
凹语言是国内首个面向 WebAssembly 设计通用编程语言,也是目前被 CNCF基金会wasm全景图 收录的的唯一一个来自中国的开源编程语言项目。凹语言项目诞生时的一个愿景就是简化现代化WebAssembly网页应用的开发。凹语言开发组最近针对Chrome最新的本地AI提供了ai包,以提供凹语言访问浏览器内置AI的能力。
Aggregator
威胁情报 | APT-Patchwork 组织测试 Badnews 新变种?
3 months ago
CVE-2024-8536 | Ultimate Blocks Plugin up to 3.2.1 on WordPress Block Attribute cross site scripting
3 months ago
A vulnerability has been found in Ultimate Blocks Plugin up to 3.2.1 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Block Attribute Handler. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-8536. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-8283 | 10Web Slider Plugin up to 1.2.58 on WordPress Setting cross site scripting
3 months ago
A vulnerability, which was classified as problematic, was found in 10Web Slider Plugin up to 1.2.58 on WordPress. This affects an unknown part of the component Setting Handler. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-8283. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-8239 | Starbox Plugin up to 3.5.2 on WordPress Shortcode cross site scripting
3 months ago
A vulnerability, which was classified as problematic, has been found in Starbox Plugin up to 3.5.2 on WordPress. Affected by this issue is some unknown functionality of the component Shortcode Handler. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2024-8239. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-3635 | Post Grid Plugin up to 7.4.x on WordPress Setting cross site scripting
3 months ago
A vulnerability classified as problematic was found in Post Grid Plugin up to 7.4.x on WordPress. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2024-3635. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-8379 | Cost Calculator Builder Plugin up to 3.2.28 on WordPress sql injection
3 months ago
A vulnerability classified as critical has been found in Cost Calculator Builder Plugin up to 3.2.28 on WordPress. Affected is an unknown function. The manipulation leads to sql injection.
This vulnerability is traded as CVE-2024-8379. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
因执行 Crew-9 任务的火箭略微出错 Falcon 9 将临时停飞
3 months ago
SpaceX 于上周六在佛罗里达卡纳维拉尔角使用 Falcon 9 火箭执行 Crew-9 载人飞行任务,火箭第一级成功着陆,上面级将飞船部署到正确的轨道,而飞船将于周日下午按计划抵达国际空间站。然而上面级在完成任务之后发生了偏离轨道的燃烧,其掉落在海面的位置偏离了预定区域。SpaceX 表示将对此展开调查,Falcon 9 将暂时停飞,找出根本原因后将恢复发射。Falcon 9 原计划于周日在加州范登堡为 Eutelsat OneWeb 公司发射 20 颗宽带卫星,这次发射将延期。
APT-Patchwork 组织测试 Badnews 新变种?
3 months ago
作者:知道创宇404高级威胁情报团队
时间:2024年9月30日
1.分析概述
近期,知道创宇404高级威胁情报团队在分析过程中发现一个与Patchwork组织历史TTP极其相似的样本,该样本使用Patchwork常用的donut加载执行最终的载荷。最终载荷与该组织已知的武器badnews在代码方面存在大量重合,相比老版本的badnews具备以下特点:
1) 使用base64+Salsa2...
Israeli Army Hacked Beirut Airport to Threaten Civilians
3 months ago
The Israeli army reportedly hacked into the control tower of Beirut’s Rafic Hariri International Airport. The incident involved issuing threats against an Iranian civilian aircraft attempting to land, according to official sources cited by Anadolu Agency. Lebanese Response to Israeli Threats Following the hacking incident, the Lebanese Ministry of Transport swiftly instructed airport authorities to […]
The post Israeli Army Hacked Beirut Airport to Threaten Civilians appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Divya
ИИ vs ученые: кто креативнее в мире науки?
3 months ago
Способны ли машины решать, что исследовать и как.
Meta Fined €91 Million for Storing Millions of Facebook and Instagram Passwords in Plaintext
3 months ago
The Irish Data Protection Commission (DPC) has fined Meta €91 million ($101.56 million) as part of a probe into a security lapse in March 2019, when the company disclosed that it had mistakenly stored users' passwords in plaintext in its systems.
The investigation, launched by the DPC the next month, found that the social media giant violated four different articles under the European Union's
The Hacker News
安全动态回顾|国家计算机病毒应急处理中心监测发现13款违规移动应用 起亚经销商平台被发现存在严重漏洞
3 months ago
快速浏览!2024.9.23-9.29安全动态周回顾。
2024开放原子开源生态大会安全与密码产业实践分论坛成功举办
3 months ago
开源安全与密码最新干货
“噪音风暴”伪造大量互联网流量
3 months ago
TCP 流量还会调整窗口大小等参数来模拟不同的操作系统,使活动保持隐秘,难以被精确定位。
安全动态回顾|国家计算机病毒应急处理中心监测发现13款违规移动应用 起亚经销商平台被发现存在严重漏洞
3 months ago
往期回顾:
胡金鱼
Recall 2.0: Microsoft дает второй шанс ИИ-помощнику, в которого никто не верил
3 months ago
Ждем возвращения новой функции в ноябре.
三分之二的美国科技行业从业者有兴趣加入工会
3 months ago
美国科技业从业者、律师和会计师是工会会员比例最低的职业,但随着过去几年科技行业的大幅裁员,很多人改变了对工会的态度。根据 Blind 对 1,901 名经过认证的科技业从业者的调查,三分之二的人有加入工会的意愿。其中比例最高的是 Intuit、通用汽车、甲骨文、Atlassian、Adobe、高通、LinkedIn、戴尔、Capital One、思科、字节跳动、英特尔。比例最低的是特斯拉、DocuSign 和 Google。Blind 的调查发现,科技行业之所以工会比例低是因为很多人认为他们获得了丰厚薪酬,不需要就薪酬进行集体谈判。
Анализ прошивки дрона DJI Mavic 3: часть 1
3 months ago
Исследователи выявили неожиданные слабые места в защите беспилотника.
FreeBuf早报 | WordPress与托管商WP Engine决裂;伊朗黑客被指控影响选举
3 months ago
伊朗黑客入侵了现任和前任美国官员、与多个美国政治运动有关的个人以及媒体成员的账户。