The GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that could allow a remote, unauthenticated attacker to access files on vulnerable hosts. The hardware maker says that ...

Speedrunners have achieved arbitrary code execution (ACE) in the original Super Mario Bros. for the first time, a feat long considered impossible. The discovery, sparked by a crash in The Lost Levels, ...

The prompt-injection issue in the agentic AI product for filesystem operations was a sanitization issue that allowed for ...

Security researchers at OX Security have exposed an architectural vulnerability in Anthropic's Model Context Protocol (MCP) ...

Adobe released emergency patches for CVE-2026-34621, a critical Acrobat and Reader zero-day that has been exploited in the wild.

ShowDoc CVE-2025-0520 exploited due to unpatched versions before 2.8.7, enabling remote code execution on 2,000+ instances.

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for building custom LLM apps and agentic systems to execute arbitrary code. The ...

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

Remote terminal units, PLCs, PoS systems, and bedside patient monitors may be susceptible to remote code execution, ...

CVE-2026-33626 exploited within 13 hours of disclosure, enabling SSRF-based cloud credential theft and internal scanning.

A simple prompt sent Claude Code on a mission that uncovered major security vulnerabilities in popular text editors — and then suggested ways to exploit them. Developers can spend days using fuzzing ...

Mistral AI launches Workflows, a Temporal-powered orchestration platform for enterprise AI that automates mission-critical ...