Wiz discovered a critical remote code execution vulnerability in GitHub that exposed millions of repositories.

Flaws in OpenEMR's platform — used by more than 100,000 healthcare providers — enabled database compromise, remote code ...

Dozens of vulnerabilities were discovered recently in the open source electronic medical records platform OpenEMR.

A prompt injection attack hit Claude Code, Gemini CLI, and Copilot simultaneously. Here's what all three system cards reveal ...

Nonprofit security organization Shadowserver found that over 6,400 Apache ActiveMQ servers exposed online are vulnerable to ...

Security vulnerabilities in Gimp allow code injection with manipulated files like GIFs. There is no update yet.

Researchers say a prompt injection bug in Google's Antigravity AI coding tool could have let attackers run commands, despite ...

Antigravity Strict Mode bypass disclosed Jan 7, 2026, patched Feb 28, enables arbitrary code execution via fd -X flag.

The prompt-injection issue in the agentic AI product for filesystem operations was a sanitization issue that allowed for ...

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...

Microsoft assigned CVE-2026-21520 to a Copilot Studio prompt injection vulnerability and patched it in January — but in ...

In GitHub and GitHub Enterprise Server, attackers with push rights to repositories can inject malicious code. Updates fix ...