Vulnerabilities News

Close-up of a computer screen displaying cybersecurity code and network monitoring data

Vulnerabilities 2026-02-10 11 views

BeyondTrust Critical Pre-Auth RCE Flaw Exposes Thousands of Instances

BeyondTrust discloses CVE-2026-1731, a critical 9.9 CVSS pre-auth RCE flaw affecting Remote Support and Privileged Remote Access with 11,000 exposed instances.

Read more →

Network router device representing vulnerable D-Link DSL routers under attack

Vulnerabilities 2026-01-22 12 views

Critical D-Link Router Flaw Under Active Attack Enables Remote Hijacking

Critical CVE-2026-0625 (CVSS 9.3) in legacy D-Link DSL routers actively exploited. Unauthenticated attackers can execute commands and hijack DNS. No patches available.

Read more →

AI artificial intelligence technology code visualization representing framework security

Vulnerabilities 2026-01-21 11 views

Chainlit AI Framework Flaws Enable Data Theft via File Read and SSRF Bugs

Critical Chainlit AI framework flaws CVE-2026-22218 and CVE-2026-22219 enable attackers to steal cloud credentials and sensitive data via file read and SSRF attacks.

Read more →

WordPress security vulnerability protection concept with shield icon

Vulnerabilities 2026-01-21 17 views

Critical WordPress Modular DS Flaw Actively Exploited for Admin Takeover

Critical CVE-2026-23550 vulnerability in WordPress Modular DS plugin allows unauthenticated attackers to gain full admin access. Over 40,000 sites at risk.

Read more →

Hacker working on laptop with code representing ChatGPT vulnerability exploitation

Vulnerabilities 2026-01-15 20 views

ZombieAgent: ChatGPT Vulnerability Enables Persistent Data Theft

Radware researchers discover ZombieAgent vulnerability in ChatGPT enabling persistent data theft across multiple user sessions through prompt injection.

Read more →

Shield turning into sword representing AI safeguards weaponization attack

Vulnerabilities 2026-01-15 22 views

Turning AI Safeguards Into Weapons: HITL Dialog Forging Attack

Checkmarx discovers HITL Dialog Forging attack that weaponizes human-in-the-loop AI safeguards by manipulating approval dialogs for malicious actions.

Read more →

Machine learning code and neural network representing AI model format vulnerabilities

Vulnerabilities 2026-01-15 22 views

Remote Code Execution in Modern AI/ML Formats and Libraries

Unit42 discloses RCE vulnerabilities in NVIDIA NeMo, Salesforce, and FlexTok AI libraries through unsafe model configuration deserialization.

Read more →

Code on computer screen representing Claude Code vulnerability research

Vulnerabilities 2026-01-15 21 views

Pwning Claude Code: Researchers Discover Eight Attack Vectors

Flatt Security research reveals eight attack vectors against Claude Code CLI, demonstrating prompt injection and command execution vulnerabilities.

Read more →

Computer screen showing malware warning representing IBM AI Bob vulnerability

Vulnerabilities 2026-01-15 23 views

IBM AI Agent Bob Manipulated to Download and Execute Malware

PromptArmor researchers demonstrate IBM AI coding agent Bob can be manipulated to download and execute malware through prompt injection vulnerabilities.

Read more →

Server room with red warning lights representing critical ServiceNow vulnerability

Vulnerabilities 2026-01-15 12 views

BodySnatcher: Critical ServiceNow AI Vulnerability Enables Platform Takeover

Critical BodySnatcher vulnerability CVE-2025-12420 in ServiceNow AI enables unauthenticated platform takeover through hardcoded credentials and broken authentication.

Read more →