Lucene search
+L

2618 matches found

hackread
hackread
added 2026/06/12 10:0 a.m.24 views

Feds Seize AudiA6 and Dark2Web in $389M Crypto Laundering Case

Feds seized AudiA6 and Dark2Web in a major crypto laundering case, arresting two suspects linked to over $389M in alleged illicit transactions...

5.3AI score
Exploits0
snyk
snyk
added 2026/06/11 9:13 p.m.5 views

Incorrect Privilege Assignment

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Incorrect Privilege Assignment due to the incorrect assignment of owner-scoped MCP loopback authority to hook-triggered agent processes. An attacker can perform unauthorized privileged...

8.7CVSS5.9AI score0.00281EPSS
Exploits0References2
osv
osv
added 2026/06/11 4:48 a.m.11 views

MAL-2026-5563 Malicious code in @sentry-internal-sdk/profiling-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7951165844874f57819b0d63b8c8511e4e9217bf0f9231ec02f06cb6e059c47 Package name @sentry-internal-sdk/profiling-node impersonates the legitimate @sentry/profiling-node Sentry publishes under the @sentry org; no...

5.5AI score
Exploits0References2
cvelist
cvelist
added 2026/06/10 1:55 p.m.44 views

CVE-2026-53469 Migration-planner: unprotected delete endpoint wipes all tenant data

A flaw was found in migration-planner. An authenticated user can exploit this vulnerability by sending a DELETE request to the /api/v1/sources route, which lacks proper authorization and filtering. This allows for the destruction of all customer data, including sources, agents, and assessments,...

9.1CVSS0.00288EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/10 1:55 p.m.16 views

CVE-2026-53469

A flaw was found in migration-planner. An authenticated user can exploit this vulnerability by sending a DELETE request to the /api/v1/sources route, which lacks proper authorization and filtering. This allows for the destruction of all customer data, including sources, agents, and assessments,...

9.1CVSS5.5AI score0.00288EPSS
Exploits0References4
osv
osv
added 2026/06/10 1:55 p.m.3 views

CVE-2026-53469 Migration-planner: unprotected delete endpoint wipes all tenant data

A flaw was found in migration-planner. An authenticated user can exploit this vulnerability by sending a DELETE request to the /api/v1/sources route, which lacks proper authorization and filtering. This allows for the destruction of all customer data, including sources, agents, and assessments,...

9.1CVSS5.9AI score0.00288EPSS
Exploits0References6
cnnvd
cnnvd
added 2026/06/10 12:0 a.m.15 views

Migration Planner UI 跨站脚本漏洞

The Migration Planner UI is an open-source migration planning front-end tool developed by KubeV2V. The Migration Planner UI has a cross-site scripting vulnerability. This vulnerability arises from the ability of attackers to register malicious discovery agents containing JavaScript code. When an...

7.3CVSS5.1AI score0.00187EPSS
Exploits0References1
packetstormnews
packetstormnews
added 2026/06/09 12:0 a.m.11 views

MemVenom: Triggered Poisoning of Multimodal Memories in Web Agents

External memory has become a core component of modern web agents, enabling long-horizon reasoning through the retrieval of past experiences. However, this paradigm introduces a critical vulnerability: malicious content injected into memory can be persistently recalled and repeatedly influence age...

5.4AI score
Exploits0
githubexploit
githubexploit
added 2026/06/07 7:26 p.m.106 views

llm-endpoint-vulnerability-poc

LLM Endpoint Vulnerability PoC A proof-of-concept for exposin...

10CVSS7.1AI score0.99999EPSS
Exploits354
euvd
euvd
added 2026/06/07 7:0 a.m.12 views

EUVD-2026-34985

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function checkcmdexists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of...

5CVSS5.2AI score0.00936EPSS
Exploits0References7
packetstormnews
packetstormnews
added 2026/06/07 12:0 a.m.20 views

Data Agents under Attack: Vulnerabilities in LLM-Driven Analytical Systems

Data agents integrate LLM-driven reasoning with relational data access, executable analytical tools, and multi-step workflow orchestration, making them increasingly central to enterprise analytics. This integration introduces new security vulnerabilities across data resources, database execution,...

5.5AI score
Exploits0
githubexploit
githubexploit
added 2026/06/06 4:13 p.m.99 views

offensive-claude-533

Offensive Security Research Config for Claude Code !TIP...

6.1AI score
Exploits0
githubexploit
githubexploit
added 2026/06/06 3:58 p.m.100 views

offensive-claude-604

Offensive Security Research Config for Claude Code !TIP...

6.1AI score
Exploits0
githubexploit
githubexploit
added 2026/06/06 2:52 p.m.89 views

offensive-claude-813

Offensive Security Research Config for Claude Code !TIP...

6.1AI score
Exploits0
githubexploit
githubexploit
added 2026/06/06 1:21 p.m.72 views

offensive-claude-982

Offensive Security Research Config for Claude Code !TIP...

6.1AI score
Exploits0
githubexploit
githubexploit
added 2026/06/06 12:4 p.m.81 views

offensive-claude-490

Offensive Security Research Config for Claude Code !TIP...

6.1AI score
Exploits0
osv
osv
added 2026/06/06 6:13 a.m.17 views

MAL-2026-5299 Malicious code in pantheon-agents (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ee06d7aabbdf76969119c2f986e18bbc7f0dcac59ae9cae4f7a04798f2d083d The package installs pantheonagents-setup.pth into site-packages, which Python auto-executes at every interpreter startup broader than import-time,...

5.8AI score
Exploits0References6
nessus
nessus
added 2026/06/06 12:0 a.m.10 views

RHEL 9 : fence-agents (RHSA-2026:22987)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:22987 advisory. The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable...

7.5CVSS6.5AI score0.00803EPSS
Exploits1References4
packetstormnews
packetstormnews
added 2026/06/06 12:0 a.m.22 views

Closing the Sim-To-Real Gap: An Evaluation Framework for Autonomous Cyber Defense Configuration of Commercial EDR

Leading commercial endpoint detection and response EDR products have shifted from operator-configured rule sets to multi-component systems where autonomous AI components operate alongside, and increasingly in place of, operator-deployed policies. Autonomous defense agents using commercial EDR as...

5.6AI score
Exploits0
nessus
nessus
added 2026/06/06 12:0 a.m.12 views

RHEL 8 : resource-agents (RHSA-2026:22133)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:22133 advisory. The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several servic...

7.5CVSS5.6AI score0.00803EPSS
Exploits1References4
Rows per page
Query Builder