Path traversal flaw in AI dev platform Langflow exploited in attacks
… According to VulnCheck security researcher Caitlin Condon, their honeypots have now detected attackers exploiting the vulnerability to drop test files on vulnerable instances. …
Search
Google fixes one actively exploited Android zero-day, 124 flaws
… Download Now Related Articles: Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks Race Against Time: Why Faster Vulnerability Alerts Matter Disgruntled r… …
New critical Exim mailer flaw allows remote code execution
… AI chained four zero-days into one exploit that bypassed both renderer and OS sandboxes. A wave of new exploits is coming. …
Drupal critical update to fix bug with high exploitation risk
… Download Now Related Articles: Telegram channels expose rapid weaponization of SmarterMail flaws New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released Google: Hackers used AI to develop zero-day exploit for web admin tool cPanel, WHM emergency update fixes critical auth bypass… …
Ivanti warns of new EPMM flaw exploited in zero-day attacks
… AI chained four zero-days into one exploit that bypassed both renderer and OS sandboxes. A wave of new exploits is coming. …
KnowledgeDeliver flaw exploited as a zero-day to install web shells
… The topics he writes about include malware, vulnerabilities, exploits and security defenses, as well as research and innovation in information security. His work has been published by Bitdefender, Netgear, The Security Ledger and Softpedia. …
73 Seconds to Breach, 24 Hours to Patch: The Case for Autonomous Validation
… And blue side AI without validation is just guesswork at machine speed, and that's an expensive hunch to deploy into production . Surviving the Post-Mythos Era: 12 Recommendations for Security Teams Over 99% of Mythos findings remain unpatched. …
New Gogs zero-day flaw lets hackers get remote code execution
… The researcher reported the security flaw to the Gogs maintainers on March 17, but they have yet to provide a patch or respond to further requests for a status update, despite acknowledging the report on March 28. …
New Veeam vulnerability exposes backup servers to RCE attacks
New Veeam vulnerability exposes backup servers to RCE attacks By Sergiu Gatlan June 9, 2026 10:27 AM Veeam has released security updates to patch a critical Backup & Replication security flaw that can be exploited to gain remote code execution RCE on domain-joined backup servers. …
18-year-old NGINX vulnerability allows DoS, potential RCE
… Three more memory corruption security issues were discovered in the same six-hour code scanning session by researchers at AI-native security company DepthFirst AI. …