The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system.
CISA warned on Wednesday that attackers have begun exploiting a high-severity Microsoft SharePoint remote code execution ...
CISA added CVE-2026-45659 SharePoint Server RCE to KEV following confirmed exploitation, requiring U.S. agencies to patch by ...
Six major AI coding assistants have been found to share a flaw that turns their approval prompts into a rubber stamp, letting ...
BeyondTrust warned customers to patch two critical security flaws in its Remote Support (RS) and Privileged Remote Access ...
Security vulnerabilities in the self-hosting platform offer attack possibilities with low, albeit narrowly defined, access ...
A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI supply chain risks. Organizations using vulnerable versions of the Hugging ...