From XSS to RCE: How to hijack a DotNetNuke server via a single script injection

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...
SecurityWeek

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

Hackers rushed to target a critical LiteLLM SQL injection flaw to steal keys, credentials, and environment-variable ...
BeInCrypto

AI Agent Bypasses Sandbox Controls in a16z DeFi Study

An AI agent bypassed sandbox controls in an a16z study, discovering a way to use tools it was not explicitly granted access ...
The Hacker News

LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.

Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw

Hackers are targeting sensitive information stored in the LiteLLM open-source large-language model (LLM) gateway by ...
IEEE

Structure-Aware Attack on Graph Neural Networks via Imperceptible Node Injection

Abstract: Graph neural networks (GNNs) excel in various graph-based tasks due to their exceptional ability to process non-Euclidean data. However, recent research indicates that their predictive ...
SiliconANGLE

OpenAI Codex vulnerability enabled GitHub token theft via command injection, report finds

A critical vulnerability in OpenAI Group PBC’s Codex coding agent could have exposed sensitive GitHub authentication tokens through a command injection flaw, according to a new report out today from ...
Seeking Alpha

Petrobras starts gas injection at Buzios field via huge Seatrium FPSO

Petrobras (PBR) has started gas injection for the P-78 floating production, storage and offloading unit at the Buzios pre-salt field off the Brazilian coast just 61 days after the vessel reached first ...
YDR

SafePrompt Launches Prompt Injection Protection API for AI Developers

Our goal was to make prompt security as simple as Stripe made payments: one API call, transparent pricing, no sales calls.” — Ian Ho, Founder, SafePrompt SAN ...