Attackers could inject prompts into a GitHub issue and take over the AI agent designed to automatically triage the issue.

Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no ...

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...

MetInfo CMS flaw CVE-2026-29014 exploited after April 7 patch, enabling remote code execution and targeting 2,000 instances.

A critical zero-day vulnerability in Microsoft SharePoint is being exploited in the wild right now, and more than 1,300 ...

Critical flaws affecting core components and extensions in PostgreSQL and MariaDB could allow remote code execution. The bugs ...

GitHub has patched a high-severity remote code execution vulnerability that allowed anyone with push access to a private ...

AI-assisted security analysis uncovered critical PostgreSQL and MariaDB vulnerabilities that remained hidden for more than two decades, highlighting the growing importance of continuously auditing ...

In early March, GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) that could have allowed ...

A critical PAN-OS vulnerability affecting the User-ID Authentication Portal is being actively exploited to achieve ...

Google announced on Monday the release of an Android update patching a critical vulnerability that can be exploited for ...

Microsoft says Windows PowerShell now warns when running scripts that use the Invoke-WebRequest cmdlet to download web content, aiming to prevent potentially risky code from executing. As Microsoft ...