微软关闭巴基斯坦业务
微软关闭了巴基斯坦业务,结束了进入该国 25 年的历史。微软退出巴基斯坦已获得员工和媒体证实。软件巨人是在 2000 年 6 月在巴基斯坦设立了办事处。最近几天,最后一批在巴员工已正式收到关闭通知,标志着微软在培养本地人才、建立企业合作伙伴关系以及促进各行业数字素养方面发挥关键作用的时代的结束。虽然关闭了巴基斯坦办事处,但微软预计将通过区域中心和第三方合作伙伴继续提供其产品和服务。
Aggregator
Arcus Media
9 months 1 week ago
You must login to view this content
cohenido
Arcus Media
9 months 1 week ago
You must login to view this content
cohenido
Arcus Media
9 months 1 week ago
You must login to view this content
cohenido
研究称加工肉没有食用的安全量
9 months 1 week ago
根据发表在《Nature Medicine》期刊上的一项研究,加工肉没有食用的安全量,即只要食用加工肉就会增加患病风险。研究人员分析了逾 60 项研究,涉及人类饮食加工肉、含糖饮料和反式脂肪酸与患 2 型糖尿病、结直肠癌和缺血性心脏病风险之间的关系。结果显示,即使食用少量的加工肉、含糖饮料和反式脂肪酸,也会增加患病风险。数据显示,与不吃任何热狗的人相比,每天只吃一只热狗的人患 2 型糖尿病的风险高 11%,患结直肠癌的风险高 7%。每天喝约 12 盎司苏打水,2 型糖尿病风险增加 8%,缺血性心脏病风险增加 2%。所谓加工肉指的是将肉加工成香肠、培根和汉堡等形式。
Perl больше не тот: copy-on-write, Unicode 16 и all/any в одном пакете
9 months 1 week ago
Не просто апдейт, а спасение кода.
DragonForce
9 months 1 week ago
You must login to view this content
cohenido
The Detection Series: Initial Access
9 months 1 week ago
Red Canary
“CitrixBleed 2” Vulnerability PoC Released – Warns of Potential Widespread Exploitation
9 months 1 week ago
Critical flaw in Citrix NetScaler devices echoes infamous 2023 security breach that crippled major organizations worldwide. The new critical vulnerability in Citrix NetScaler devices has security experts warning of potential widespread exploitation, drawing alarming parallels to the devastating “CitrixBleed” attacks that plagued organizations in 2023. The vulnerability, tracked as CVE-2025-5777 and dubbed “CitrixBleed 2,” allows […]
The post “CitrixBleed 2” Vulnerability PoC Released – Warns of Potential Widespread Exploitation appeared first on Cyber Security News.
Guru Baran
如何利用ai辅助挖漏洞
9 months 1 week ago
Submit #607209: Bludit 3.16.2 Unrestricted Upload [Duplicate]
9 months 1 week ago
Submit #607209 / VDB-231710
Submit #607203: Bludit 3.16.2 Improper Neutralization of Alternate XSS Syntax [Duplicate]
9 months 1 week ago
Submit #607203 / VDB-254051
CVE-2025-7080 | Done-0 Jank up to 322caebbad10568460364b9667aa62c3080bfc17 JWT Token jwt_utils.go accessSecret/refreshSecret hard-coded password (EUVD-2025-20136)
9 months 1 week ago
A vulnerability, which was classified as problematic, was found in Done-0 Jank up to 322caebbad10568460364b9667aa62c3080bfc17. Affected is an unknown function of the file internal/utils/jwt_utils.go of the component JWT Token Handler. The manipulation of the argument accessSecret/refreshSecret with the input jank-blog-secret/jank-blog-refresh-secret leads to use of hard-coded password.
This vulnerability is traded as CVE-2025-7080. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.
vuldb.com
CVE-2025-7079 | mao888 bluebell-plus up to 2.3.0 JWT Token jwt.go mySecret hard-coded password (Issue 35 / EUVD-2025-20137)
9 months 1 week ago
A vulnerability, which was classified as problematic, has been found in mao888 bluebell-plus up to 2.3.0. This issue affects some unknown processing of the file bluebell_backend/pkg/jwt/jwt.go of the component JWT Token Handler. The manipulation of the argument mySecret with the input bluebell-plus leads to use of hard-coded password.
The identification of this vulnerability is CVE-2025-7079. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #603746: https://github.com/Done-0 https://github.com/Done-0/Jank 9b7b0cb Authorization Bypass [Accepted]
9 months 1 week ago
Submit #603746 / VDB-314994
Tritium
Submit #603726: https://github.com/mao888 https://github.com/mao888/bluebell-plus v2.3.0 Authorization Bypass [Accepted]
9 months 1 week ago
Submit #603726 / VDB-314993
Tritium
CVE-2025-7078 | 07FLYCMS/07FLY-CMS/07FlyCRM up to 1.3.9 cross-site request forgery (EUVD-2025-20135)
9 months 1 week ago
A vulnerability classified as problematic was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.3.9. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery.
This vulnerability was named CVE-2025-7078. The attack can be initiated remotely. Furthermore, there is an exploit available.
This product is published under multiple names. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com
Russia Jailed Hacker Who Worked for Ukrainian Intelligence to Launch Cyberattacks on Critical Infrastructure
9 months 1 week ago
Russian Federal Security Service (FSB) officers have detained two hackers in Siberia who conducted cyberattacks on critical infrastructure facilities under direct orders from Ukrainian intelligence services. The simultaneous arrests in the Kemerovo and Tomsk regions exposed a sophisticated cyber espionage network targeting Russia’s governmental, industrial, and financial information systems. The primary suspect, a 36-year-old resident […]
The post Russia Jailed Hacker Who Worked for Ukrainian Intelligence to Launch Cyberattacks on Critical Infrastructure appeared first on Cyber Security News.
Tushar Subhra Dutta
Submit #603552: 07FLYCMS https://github.com/lingqifei/07fly-crm V1.3.9 CSRF [Accepted]
9 months 1 week ago
Submit #603552 / VDB-314992
Excent1c
Submit #603132: 程序员二师兄 oasys master arbitrary file reading [Duplicate]
9 months 1 week ago
Submit #603132 / VDB-310995
Unnlucky1