Fortinet has fixed nine vulnerabilities, including high-severity command execution and authentication bypass flaws.

BeyondTrust warned customers to patch a critical security flaw in its Remote Support (RS) and Privileged Remote Access (PRA) software that could allow unauthenticated attackers to execute arbitrary ...

A zero-click flaw in Anthropic’s Claude Desktop Extensions allows attackers to trigger remote code execution via Google ...

A critical remote code execution flaw in the WPvivid Backup & Migration WordPress plugin puts over 900,000 sites at risk unless patched.

Leeds, UK. - Leaning Technologies today launches BrowserPod for Node.js, the first engine of BrowserPod, a universal e ...

PandasAI, an open source project by SinaptikAI, has been found vulnerable to Prompt Injection attacks. An attacker with access to the chat prompt can craft malicious input that is interpreted as code, ...

A worrying Google Chrome bug was patched ...

Google has released an emergency update to patch an actively exploited zero-day—the first Chrome zero-day of the year.

A zero-click vulnerability in Claude Desktop Extensions has exposed over 10,000 users to remote code execution through ...

Fortinet fixes critical FortiClientEMS SQL injection flaw (CVSS 9.1) enabling code execution; separate SSO bug actively exploited.

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline ...

Google released a Chrome security update fixing two high-severity flaws that could enable code execution or crashes via malicious websites.