A critical vulnerability in mcp-remote (CVE-2025-6514) allows remote code execution, affecting 437,000+ users.

Adobe patched 58 vulnerabilities across 13 products, including three critical-severity bugs in Adobe Connect, ColdFusion, and ...

Patchstack published an advisory on a supply chain attack affecting Gravity Forms that enables remote code execution on ...

Hackers have started to exploit a critical remote code execution vulnerability in Wing FTP Server just one day after ...

Researchers uncover PerfektBlue flaws in OpenSynergy’s BlueSDK, exposing millions of vehicles to remote code execution ...

Two Gravity Forms WordPress plugin versions available on the official download page were injected with malware in a supply ...

Valuable tools for experienced attackers and researchers, LLMs are not yet capable of creating exploits at a prompt, ...

Proof-of-concept exploits have been released for a critical SQLi vulnerability in Fortinet FortiWeb that can be used to ...

Patch Tuesday fixes 137 vulnerabilities, including critical flaws in SQL Server, Netlogon, Office, and the .NET Framework.

Activision has temporarily pulled the Microsoft Store version of Call of Duty: WWII from availability while it investigates security concerns. The company hasn’t shared much detail about the reason ...

MCP Host Code Execution We love MCP. It's an elegant and powerful protocol with huge potential, but the very mechanisms that make MCP so v ...

Anthropic has had an eventful couple weeks, and we have two separate write-ups to cover. The first is a vulnerability in the ...