专家解读 | 周辉:明确人脸识别应用边界 完善个人信息权益保障
近日,国家互联网信息办公室、公安部联合公布了《人脸识别技术应用安全管理办法》,针对人脸识别技术的应用提出了系统化的规范指引,旨在应对人脸识别技术滥用,完善治理机制,保护个人信息权益,维护社会秩序和公共安全。
Aggregator
专家解读 | 张凌寒:引领国际人工智能生成内容标识实践 营造清朗网络空间
5 months 2 weeks ago
2022年以来,国内外生成式人工智能大模型快速迭代发展,改变了传统的内容生产与信息传播范式。与此同时,生成式人工智能带来的深度伪造、虚假信息等潜在风险进入国际社会规制视野,各国纷纷采取措施应对。
关注 | 针对个人信息保护问题,四部门联合开展专项行动
5 months 2 weeks ago
2025年,四部门进一步深入治理常用服务产品和常见生活场景中存在的违法违规收集使用个人信息典型问题,切实维护人民群众在网络空间合法权益,着力提升人民群众满意度、获得感。
重磅 | 《中华人民共和国网络安全法(修正草案再次征求意见稿)》公布,主要修改四方面内容
5 months 2 weeks ago
意见反馈截止时间为2025年4月27日。
Firefox 存在严重漏洞,类似于 Chrome 已遭利用0day
5 months 2 weeks ago
速更新
已存在9年的 npm 包遭劫持,通过混淆脚本投毒提取API密钥
5 months 2 weeks ago
这起软件供应链攻击的幕后动机尚不明确
已存在9年的 npm 包遭劫持,通过混淆脚本投毒提取API密钥
5 months 2 weeks ago
这起软件供应链攻击的幕后动机尚不明确
Firefox 存在严重漏洞,类似于 Chrome 已遭利用0day
5 months 2 weeks ago
速更新
已存在9年的 npm 包遭劫持,通过混淆脚本投毒提取API密钥
5 months 2 weeks ago
这起软件供应链攻击的幕后动机尚不明确
Firefox 存在严重漏洞,类似于 Chrome 已遭利用0day
5 months 2 weeks ago
速更新
已存在9年的 npm 包遭劫持,通过混淆脚本投毒提取API密钥
5 months 2 weeks ago
这起软件供应链攻击的幕后动机尚不明确
CVE-2024-28041 | KDDI HGW BL1500HM up to 002.001.013 improper authentication
5 months 2 weeks ago
A vulnerability has been found in KDDI HGW BL1500HM up to 002.001.013 and classified as critical. This vulnerability affects unknown code. The manipulation leads to improper authentication.
This vulnerability was named CVE-2024-28041. The attack needs to be initiated within the local network. There is no exploit available.
vuldb.com
CVE-2025-24662 | LearnDash LMS Plugin up to 4.20.0.1 on WordPress authorization
5 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in LearnDash LMS Plugin up to 4.20.0.1 on WordPress. This affects an unknown part. The manipulation leads to missing authorization.
This vulnerability is uniquely identified as CVE-2025-24662. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2025-26852 | DESCOR INFOCAD up to 3.5.1 sql injection
5 months 2 weeks ago
A vulnerability was found in DESCOR INFOCAD up to 3.5.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection.
This vulnerability is known as CVE-2025-26852. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-26853 | DESCOR INFOCAD up to 3.5.1 Authorization Schema improper authorization
5 months 2 weeks ago
A vulnerability was found in DESCOR INFOCAD up to 3.5.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component Authorization Schema. The manipulation leads to improper authorization.
This vulnerability is handled as CVE-2025-26853. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-26874 | MemberSpace Plugin up to 2.1.13 on WordPress cross site scripting
5 months 2 weeks ago
A vulnerability classified as problematic was found in MemberSpace Plugin up to 2.1.13 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2025-26874. The attack can be launched remotely. There is no exploit available.
vuldb.com
PrivacyCheck 开源敏感信息审计工具
5 months 2 weeks ago
PrivacyCheck 开源敏感信息审计工具
PrivacyCheck 开源敏感信息审计工具
5 months 2 weeks ago
PrivacyCheck 开源敏感信息审计工具
PrivacyCheck 开源敏感信息审计工具
5 months 2 weeks ago
PrivacyCheck 开源敏感信息审计工具
PrivacyCheck 开源敏感信息审计工具
5 months 2 weeks ago
PrivacyCheck 开源敏感信息审计工具