Aggregator
攻读博士学位的人数在减少
1 year 4 months ago
过去几年部分国家攻读博士学位的人数出现了下降,高生活成本、低薪水和毕业后工作选择有限等被认为是这一现象的主因。澳大利亚大学和 Australian Council of Graduate Research(ACGR)上月公布的数据显示,2018-2023 年澳大利亚国内攻读博士学位的人数减少了 8%,而同期内人口增长了逾 7%。在很多国家阻碍学生读博的最主要因素是生活成本高而薪水很少。在澳大利亚,博士生的平均津贴约 32,000 澳元,刚刚高于单身人士的贫困线,而澳博士生的平均年龄在 30 多岁,可能面临着家庭等责任。日本的情况类似,2003 年日本国内的博士生有 18,232 人,而 2021 年降至了 15,014 人。日本文部科学省去年宣布了为博士生提供额外资金的计划。巴西报告 2022 年博士生入学人数创十年新低,一个原因是新冠疫情,但这不是唯一原因。2023 年巴西将硕士和博士生助学金增长四成,促进了当年入学人数的小幅增长。
CVE-2025-1190 | code-projects Job Recruitment 1.0 load_user-profile.php cross site scripting
1 year 4 months ago
A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. This vulnerability affects unknown code of the file /_parse/load_user-profile.php. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2025-1190. The attack can be initiated remotely. There is no exploit available.
Multiple parameters might be affected.
vuldb.com
Replaced by VDB-283873 | codeprojects Job Recruitment 1.0 Administrator Login Page $role cross site scripting
1 year 4 months ago
A vulnerability was found in codeprojects Job Recruitment 1.0. It has been classified as problematic. This affects an unknown part of the file $role of the component Administrator Login Page. The manipulation leads to cross site scripting.
It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-11078 | code-projects Job Recruitment 1.0 /register.php e/role cross site scripting (Replaces VDB-295755)
1 year 4 months ago
A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument e/role leads to cross site scripting.
This vulnerability is known as CVE-2024-11078. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #498524: codeprojects Job-Recruitment v1.0 php Cross Site Scripting [Duplicate]
1 year 4 months ago
Submit #498524 / VDB-283873
JunFeiGu
OpenAI and Guardian Media Group launch content partnership
1 year 4 months ago
OpenAI and Guardian Media Group announce content partnership to bring Guardian news content to ChatGPT.
ZServers: полиция Амстердама разрушила убежище киберпреступников
1 year 4 months ago
История неуязвимого хостинга закончена.
«Я устал, я ухожу»: Линус Торвальдс довёл до ручки ещё одного разработчика Linux
1 year 4 months ago
Как давление и постоянные конфликты разрушают Open Source изнутри.
Fog
1 year 4 months ago
cohenido
FreeBuf周报 | 全球VPN设备遭遇大规模暴力破解攻击;OpenSSL 软件库曝高危漏洞
1 year 4 months ago
总结推荐本周的热点资讯、一周好文,保证大家不错过本周的每一个重点!
8 - CVE-2024-10644
1 year 4 months ago
Currently trending CVE - hypeScore: 1 - Code injection in Ivanti Connect Secure before version 22.7R2.4 and Ivanti Policy Secure before version 22.7R1.3 allows a remote authenticated attacker with admin privileges to achieve remote code execution.
7 - CVE-2024-47908
1 year 4 months ago
Currently trending CVE - hypeScore: 1 - OS command injection in the admin web console of Ivanti CSA before version 5.0.5 allows a remote authenticated attacker with admin privileges to achieve remote code execution.
Обнаружение C2-сервера через QUIC: подробное руководство по анализу сетевого трафика
1 year 4 months ago
Детальный разбор техник идентификации C2-каналов в QUIC-трафике. Анализ особенностей протокола, паттернов соединений и инструментов мониторинга для ИБ-специалистов.
中国居民对 AI 的信任高于美国
1 year 4 months ago
根据 Edelman Trust Barometer 的调查报告,发展中国家居民对 AI 的信任普遍高于发达国家。印度对 AI 的信任度最高达到 77%,其次是尼日利亚的 76%,泰国的 73% 和中国的 72%。相比下美国只有 32%。在接受调查的国家中,只有六个国家对 AI 的信任度低于美国:加拿大(30%)、德国(29%)、荷兰(29%)、英国(28%)、澳大利亚(25%)和爱尔兰(24%)。在全球范围 52% 的男性表示他们信任 AI,女性的比例为 46%,年轻人对其的信任度显著高于老年人。在美国民主党人(38%)比共和党人(34%)或独立人士(23%)更信任 AI。高收入受访者(51%)也比中等收入(45%)或低收入(36%)受访者更信任 AI。
CVE-2023-46218 | cURL up to 8.4.0 Cookie lib/cookie.c Curl_cookie_add information disclosure (DLA 3692-1 / Nessus ID 215718)
1 year 4 months ago
A vulnerability was found in cURL up to 8.4.0 and classified as problematic. Affected by this issue is the function Curl_cookie_add in the library lib/cookie.c of the component Cookie Handler. The manipulation leads to information disclosure.
This vulnerability is handled as CVE-2023-46218. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-50164 | Apache Struts up to 2.5.32/6.3.0.1 File Upload file access (ID 176157)
1 year 4 months ago
A vulnerability was found in Apache Struts up to 2.5.32/6.3.0.1. It has been classified as critical. This affects an unknown part of the component File Upload Handler. The manipulation leads to files or directories accessible.
This vulnerability is uniquely identified as CVE-2023-50164. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-6337 | HashiCorp Vault/Vault Enterprise up to 1.15.2 HTTP Request allocation of resources
1 year 4 months ago
A vulnerability was found in HashiCorp Vault and Vault Enterprise. It has been rated as critical. This issue affects some unknown processing of the component HTTP Request Handler. The manipulation leads to allocation of resources.
The identification of this vulnerability is CVE-2023-6337. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-50164 | Oracle Communications Policy Management 12.6.1.0.0/15.0.0.0.0 CMP file access
1 year 4 months ago
A vulnerability classified as very critical has been found in Oracle Communications Policy Management 12.6.1.0.0/15.0.0.0.0. This affects an unknown part of the component CMP. The manipulation leads to files or directories accessible.
This vulnerability is uniquely identified as CVE-2023-50164. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2023-50164 | Oracle Hyperion Infrastructure Technology 11.2.14.0.000 Installation/Configuration file access
1 year 4 months ago
A vulnerability classified as very critical was found in Oracle Hyperion Infrastructure Technology 11.2.14.0.000. This vulnerability affects unknown code of the component Installation/Configuration. The manipulation leads to files or directories accessible.
This vulnerability was named CVE-2023-50164. The attack can be initiated remotely. There is no exploit available.
vuldb.com