一个有意思的xss
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
Aggregator
微软并未排除分拆Xbox部门的可能性
1 week 3 days ago
微软正准备对其 Xbox 部门的大部分员工进行裁员,并重新评估其下一代Project Helix游戏机的计划。该公司显然也在考虑大幅重组其与 Xbox 的关系,甚至不排除将其分拆成一家独立公司的可能性
Claude Fable模型临时下线后 部分因该模型而开通或升级订阅的用户可申请退款
1 week 3 days ago
毕马威报告含有关于AI优势的AI“幻觉”内容
1 week 3 days ago
毕马威一份关于全球企业如何使用人工智能(AI)的报告,引用了似乎源自AI幻觉的虚假案例,夸大了这项技术的采用程度。这份10月发布、题为《在自主式AI时代重新定义卓越》的报告,对多家机构使用AI的情况作
英国或将禁止16岁以下儿童使用社交媒体
1 week 3 days ago
据报道,英国首相基尔·斯塔默即将宣布禁止16岁以下儿童使用社交媒体。虽然政府此前曾透露其正在研究关于禁令的选项,但斯塔默现已准备好在周一的一次演讲中公布这项政策。政府消息人士告诉《卫报》,英国的禁令将
Infinite Campus - 137,123 breached accounts
1 week 3 days ago
Recommend
别再穿便宜货了
1 week 3 days ago
1.今天上班穿什么衣服?2.今天约会穿什么衣服?3.今天出门逛街穿什么衣服?.....好看的皮囊千篇一律,有趣的灵魂万里挑一。
别再穿便宜货了
1 week 3 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
发现频道:最近10日的热门排行榜[2026年第24期]
1 week 3 days ago
Looking for a comprehensive .NET backend course that actually implements everything in a real project (Clean Architecture, JWT, CI/CD, deployment)
1 week 3 days ago
美对Anthropic出口管制 加拿大总理:过度依赖少数模型存在风险
1 week 3 days ago
美对Anthropic出口管制 加拿大总理:过度依赖少数模型存在风险加拿大总理卡尼表示,美国实施出口禁令禁止所有外国用户访问Anthropic最新人工智能模型,这凸显了仅依赖少数几个强大AI工具的风险
2026,红队钓鱼的邪修手法
1 week 3 days ago
主打一手意想不到
Looking for advice on getting into AI/LLM security and red teaming
1 week 3 days ago
Java Attach API内存注入
1 week 3 days ago
通过 Java Attach API的底层Unix Domain Socket通信协议,结合Linux内核memfd_create系统调用实现纯内存态Agent注入。
苹果或自研 Claw 代理机器人;Meta 内部爆发「AI 叛乱」;北航教授:中国无需复制 SpaceX
1 week 3 days ago
外媒曝蚂蚁集团正秘密测试 AI 版支付宝;微软 CEO 纳德拉:光烧 Token 撑不起 AI 未来;余承东:我只能第一!彻底弃安卓 华为突破封锁麒麟回归
苹果或自研 Claw 代理机器人;Meta 内部爆发「AI 叛乱」;北航教授:中国无需复制 SpaceX
1 week 3 days ago
环境异常 当前环境异常,完成验证后即可继续访问。 去验证
CVE-2026-46517 | InternLM LMDeploy dynamically-determined object attributes (EUVD-2026-35874)
1 week 3 days ago
A vulnerability described as problematic has been identified in InternLM LMDeploy. Affected by this issue is some unknown functionality. Executing a manipulation can lead to dynamically-determined object attributes.
This vulnerability is handled as CVE-2026-46517. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2026-45329 | espressif esp-idf 5.5.4/6.0 RISC-V Machine Mode esp_secure_services.c pointer information disclosure (GHSA-w82j-7q63-7pqm)
1 week 3 days ago
A vulnerability labeled as problematic has been found in espressif esp-idf 5.5.4/6.0. This impacts an unknown function of the file esp_secure_services.c of the component RISC-V Machine Mode. Such manipulation of the argument pointer leads to information disclosure.
This vulnerability is documented as CVE-2026-45329. The attack needs to be performed locally. There is not any exploit available.
The affected component should be upgraded.
vuldb.com
CVE-2026-45328 | espressif esp-idf 5.5.4/6.0 esp_secure_services.c input validation (GHSA-mmgp-73p4-92xp)
1 week 3 days ago
A vulnerability marked as problematic has been reported in espressif esp-idf 5.5.4/6.0. Affected is an unknown function of the file esp_secure_services.c. Performing a manipulation results in improper input validation.
This vulnerability is reported as CVE-2026-45328. The attack requires a local approach. No exploit exists.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2025-59382 | QNAP QTS/QuTS hero/QuTScloud external control of assumed-immutable web parameter (qsa-26-10)
1 week 3 days ago
A vulnerability was found in QNAP QTS, QuTS hero and QuTScloud and classified as problematic. The affected element is an unknown function. Executing a manipulation can lead to external control of assumed-immutable web parameter.
The identification of this vulnerability is CVE-2025-59382. The attack may be launched remotely. There is no exploit available.
It is suggested to upgrade the affected component.
vuldb.com