发布 | 中国信通院发布《中国数字经济发展研究报告(2025年)》(附下载)
党的二十届三中全会指出,要“健全促进实体经济和数字经济深度融合制度”,这为我国进一步推动数字经济发展指明了方向。“十四五”收官之年,我国数字经济发展已迈向全面扩展期。
Aggregator
专家解读 | 范科峰:筑牢数据产权安全屏障 护航数据要素高质量发展
2 weeks 1 day ago
数据作为数字经济时代的关键生产要素,其价值在安全流通中得以充分释放,而部分数据因承载着个人信息、商业秘密、公共利益乃至国家秘密,具有高敏感属性,加之数据本身可复制、非排他、高流动性的特征……
论坛·原创 | 构建网络空间命运共同体之路:中国智慧与世界未来
2 weeks 1 day ago
中国国家主席习近平在第二届世界互联网大会上首次提出构建网络空间命运共同体理念,为摆脱全球网络空间发展困境提供了中国方案。当前,构建网络空间命运共同体从理论倡议发展为国际共识,从理念探索深化为实践行动,为全球互联网治理提供了生动的中国样本。
一文读懂:智能体身份权限治理演进实录
2 weeks 1 day ago
«У вас там чужие люди». «В штате?» «Нет, в серверах». Инцидент в министерстве финансов Нидерландов
2 weeks 1 day ago
В Гааге гадают, что именно украли у чиновников.
Cybercrime group Lapsus$ claims the hack of pharma giant AstraZeneca
2 weeks 1 day ago
Cybercrime group Lapsus$ claims it hacked AstraZeneca, stealing 3GB of data including credentials, code, and employee information. The Lapsus$ group claims it breached AstraZeneca, stealing about 3GB of sensitive data. The alleged leak includes credentials, tokens, internal code repositories (Java, Angular, Python), and employee information, though the company has not yet confirmed the breach. Even […]
Pierluigi Paganini
CVE-2026-4784 | code-projects Simple Laundry System 1.0 Parameter /checkcheckout.php serviceId sql injection (EUVD-2026-15183)
2 weeks 1 day ago
A vulnerability classified as critical was found in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /checkcheckout.php of the component Parameter Handler. The manipulation of the argument serviceId results in sql injection.
This vulnerability is known as CVE-2026-4784. It is possible to launch the attack remotely. Furthermore, an exploit is available.
vuldb.com
CVE-2026-28895 | Apple iOS/iPadOS up to 26.3 Stolen Device Protection denial of service (EUVD-2026-15177)
2 weeks 1 day ago
A vulnerability described as problematic has been identified in Apple iOS and iPadOS up to 26.3. Affected by this issue is some unknown functionality of the component Stolen Device Protection. The manipulation results in denial of service.
This vulnerability is known as CVE-2026-28895. An attack on the physical device is feasible. No exploit is available.
Upgrading the affected component is recommended.
vuldb.com
CVE-2026-1166 | Hitachi Ops Center Administrator up to 11.0.7 redirect (hitachi-sec-2026-113 / EUVD-2026-15184)
2 weeks 1 day ago
A vulnerability labeled as problematic has been found in Hitachi Ops Center Administrator up to 11.0.7. The affected element is an unknown function. The manipulation results in open redirect.
This vulnerability was named CVE-2026-1166. The attack may be performed from remote. There is no available exploit.
The affected component should be upgraded.
vuldb.com
CVE-2026-2072 | Hitachi Infrastructure Analytics Advisor prior 11.0.5-00 cross site scripting (hitachi-sec-2026-114 / EUVD-2026-15186)
2 weeks 1 day ago
A vulnerability identified as problematic has been detected in Hitachi Infrastructure Analytics Advisor and Ops Center Analyzer. Impacted is an unknown function. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2026-2072. The attack is possible to be carried out remotely. No exploit exists.
You should upgrade the affected component.
vuldb.com
CVE-2026-2343 | PeproDev PeproDev Ultimate Invoice Plugin up to 2.2.5 on WordPress ZIP File Parser information disclosure (EUVD-2026-15188)
2 weeks 1 day ago
A vulnerability classified as problematic has been found in PeproDev PeproDev Ultimate Invoice Plugin up to 2.2.5 on WordPress. The impacted element is an unknown function of the component ZIP File Parser. Performing a manipulation results in information disclosure.
This vulnerability was named CVE-2026-2343. The attack may be initiated remotely. There is no available exploit.
vuldb.com
CVE-2026-26306 | OM Digital Solutions OM Workspace up to 2.4 Installer uncontrolled search path (EUVD-2026-15190)
2 weeks 1 day ago
A vulnerability was found in OM Digital Solutions OM Workspace up to 2.4. It has been classified as problematic. This affects an unknown part of the component Installer. Performing a manipulation results in uncontrolled search path.
This vulnerability is cataloged as CVE-2026-26306. The attack must be initiated from a local position. There is no exploit available.
vuldb.com
CVE-2026-33253 | Sanyo Denki Sanups Software Standalone/Sanups Software Windows Service unquoted search path (EUVD-2026-15192)
2 weeks 1 day ago
A vulnerability described as problematic has been identified in Sanyo Denki Sanups Software Standalone and Sanups Software. The affected element is an unknown function of the component Windows Service. Such manipulation leads to unquoted search path.
This vulnerability is uniquely identified as CVE-2026-33253. Local access is required to approach this attack. No exploit exists.
vuldb.com
CVE-2026-32326 | Sharp Speed Wi-Fi 5G X01 missing authentication (EUVD-2026-15194)
2 weeks 1 day ago
A vulnerability has been found in Sharp home 5G HR01, home 5G HR02, Wi-Fi STATION SH-52A, Wi-Fi STATION SH-52B, Wi-Fi STATION SH-54C, 5G Mobile Router SH-U01, Pocket WiFi 5G A503SH and Speed Wi-Fi 5G X01 and classified as critical. The affected element is an unknown function. The manipulation leads to missing authentication.
This vulnerability is referenced as CVE-2026-32326. The attack needs to be initiated within the local network. No exploit is available.
vuldb.com
Virtual machines, virtually everywhere – and with real security gaps
2 weeks 1 day ago
Cloud VMs offer unmatched speed, scale and flexibility – all of which could eventually count for little if they’re left to fend for themselves
Linux pwn 探索篇
2 weeks 1 day ago
快来报名一起学习
Karpathy紧急发声:日下载340万次的LiteLLM被投毒,黑客一个bug意外暴露危机
2 weeks 1 day ago
从Trivy到LiteLLM,连环攻击是怎么发生的?
Polaris-Obfuscator中BogusControlFlow简要分析 反混淆
2 weeks 1 day ago
看雪论坛作者ID:Taardisaa
某智慧校园系统代码审计
2 weeks 1 day ago
智慧校园代码审计
睡前敲了一下upgrade,醒来我的“龙虾”废了
2 weeks 1 day ago
安全“养虾”秘密武器,原来是TA