A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI ...

A 9.9-severity vulnerability in Flowise’s MCP stdio implementation can allow attackers to achieve remote code execution in ...

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code to escape the container and do nasty things to IT environments. As a result, ...

An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. Designed as an alternative to GitHub ...

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...

A critical vulnerability affecting certain configurations of the Exim open-source mail transfer agent could be exploited by an unauthenticated remote attacker to execute arbitrary code. Identified as ...

A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an ...

Hackers are exploiting a critical vulnerability in Mirasvit Full Page Cache Warmer to execute code remotely on Magento ...

Learn how Claude Code's new workflow feature reduces token tax, improves reliability, and automates complex developer tasks efficiently.

Chrome 149 was released with patches for 429 vulnerabilities, including over 100 critical and high-severity bugs.

Claude Opus 4.8 is Anthropic’s new flagship AI model, released May 28, 2026, and the company says it is about four times less likely than Opus 4.7 to leave flaws in its own code unflagged. Pricing ...

ChatGPhish exploits ChatGPT Markdown rendering to deliver phishing content from summarized web pages, increasing AI attack surfaces.