A prompt injection flaw in Google’s Antigravity IDE turns a file search tool into a remote code execution vector, bypassing ...

The prompt injection issue in the agentic AI product for filesystem operations was a sanitization issue that allowed for ...

The security defects could be exploited for remote code execution, OS command injection, and WAF detection bypass.

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...

The critical remote code execution flaw (CVE-2026-1731) in the remote monitoring and management tool can be exploited to ...

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

A surge in AI agent adoption is exposing critical systems online, where simple exploits can hand attackers complete control ...

Splunk has released patches that resolve high- and medium-severity vulnerabilities in Splunk Enterprise and MCP Server.

Researchers say a prompt injection bug in Google's Antigravity AI coding tool could have let attackers run commands, despite ...

Anthropic’s Claude Code now controls macOS apps with mouse, keyboard, and screenshots, plus remote actions via the new ...