智能运维

Apache Software Foundation published an official security advisory on a critical RCE vulnerability in Apache Commons Text Library on 13th Oct. The flaw dobbed Text4shell is being tracked under the id…

GitLab published a security advisory against a critical authenticated remote code execution vulnerability in GitLab on 22 April. The vulnerability tracked as CVE-2022-2884 with a base score of 9.9 in…

According to security researchers Jang and Will Dormann, advisories published to mitigate CVE-2022-41040 and CVE-2022-41082, two 0-day vulnerabilities in Microsoft Exchange Server earlier, are not su…

前文已经初始化了 workspace-root，从本文开始就需要依次搭建组件库、example、文档、cli。本文内容是搭建 组件库的开发环境。 1 packages 目录 前面在项目根目录下创建了 packages 目录，该目录存放组件…

Spring 基于注解的配置 从 Spring 2.5 开始就可以使用注解来配置依赖注入。而不是采用 XML 来描述一个 bean 连线，你可以使用相关类，方法或字段声明的注解，将 bean 配置移动到组件类本身。 注解：就是一个类，使…

The VCenter Server recently disclosed a high severity privilege escalation vulnerability in the Integrated Windows Authentication (IWA) mechanism known as CVE-2021-22048. A threat actor can exploit t…

On 1st November, OpenSSL published an advisory that talks about two high-severity vulnerabilities in its software library. The vulnerabilities in OpenSSL allow attackers to carry out buffer…

According to a ProofPoint survey, 83% of organizations experienced email-based phishing attacks in 2021 which is almost 26% increase from 2020. Phishing has become one of the leading causes of data b…

As crime grows in the digital world, cyber criminals try to make their malware more sophisticated. Ransomware is one such malware that tries to lock the victim’s data by encrypting and making t…