IT之家 1 月 8 日消息，科技媒体 bleepingcomputer 昨日（1 月 7 日）发布博文，报道称广泛使用的 JavaScript PDF 生成库 jsPDF 近期报告严重安全漏洞（CVE-2025-68428）， CVSS 评分高达 ...

IT之家 1 月 8 日消息，科技媒体 bleepingcomputer 昨日（1 月 7 日）发布博文，报道称广泛使用的 JavaScript PDF 生成库 jsPDF 近期报告严重安全漏洞（CVE-2025-68428），CVSS 评分高达 9 ...

The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that ...

A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and ...

风险排序与防御策略从攻击效率与危害程度看，exe＞docx（含宏）＞pdf（含恶意脚本）＞普通docx/pdf。结语：安全认知需动态进化“钓鱼邮件附件类型”的风险排序并非绝对，攻击者正通过技术融合（如“exe+pdf双附件”）提升攻击效率… ...

Xibo digital signage solution is now compatible with the Raspberry Pi 5 thanks to Axeribo, an unofficial alternative to the ...

A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...

Russian-linked APT28 ran credential-harvesting attacks in 2025 using fake Microsoft, Google, and VPN login pages, PDF lures, ...

My heart has been turned recently to a document that hangs on the walls of many Latter-day Saint homes and is printed in the ...

An all-in-one browser-based platform for developers, marketers, and creators—no logins required, no limits, and ...

If you're unaware, web browsers are horribly insecure. They're like a ship with a thousand holes and a thousand sailors with ...