A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI ...

A popular WordPress plugin is once again being leveraged in website takeover attacks.

A serious security zero-day vulnerability that may give hackers privilege and access to any repository (including private ...

Gogs has patched a critical security zero-day flaw that can allow attackers to compromise Internet-facing instances and ...

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...

A critical security vulnerability has been disclosed in Gogs, a popular open-source self-hosted Git service, that allows an ...

An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. Designed as an alternative to GitHub ...

Hackers are exploiting a critical vulnerability in Mirasvit Full Page Cache Warmer to execute code remotely on Magento ...

A 9.9-severity vulnerability in Flowise’s MCP stdio implementation can allow attackers to achieve remote code execution in ...

Researcher reported the vuln in March. Maintainers haven't responded to his messages since ...

Microsoft released fixes for SharePoint remote code execution vulnerability CVE-2026-45659 with a CVSS score of 8.8.

Activision says the shooter was "brought offline while we investigate reports of an issue." ...