ADR: An Agentic Detection System for Enterprise Agentic AI Security

We present the Agentic AI Detection and Response ADR system, the first large-scale, production-proven enterprise framework for securing AI agents operating through the Model Context Protocol MCP. We identify three persistent challenges in this domain: 1 limited observability -- existing Endpoint...

CVE-2026-28099

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup UberSlider Ultra uberSliderultra allows Reflected XSS.This issue affects UberSlider Ultra: from n/a through = 2.3...

CVE-2026-28100

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup UberSlider PerpetuumMobile uberSliderperpetuummobile allows Reflected XSS.This issue affects UberSlider PerpetuumMobile: from n/a through = 2.3...

CVE-2026-28101

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup UberSlider MouseInteraction uberSlidermouseinteraction allows Reflected XSS.This issue affects UberSlider MouseInteraction: from n/a through = 2.3...

PT-2026-23377

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup UberSlider Classic uberSlider classic allows Reflected XSS.This issue affects UberSlider Classic: from n/a through = 2.5...

PT-2026-23375

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup UberSlider PerpetuumMobile uberSlider perpetuummobile allows Reflected XSS.This issue affects UberSlider PerpetuumMobile: from n/a through = 2.3...

EUVD-2025-198557

Malicious code in uber-ui npm...

Malicious code in uber-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb767de450fdafc6d2aa88f77a1f0a95188ddb866565c91258711f3434ce561e The package uber-ui was found to contain malicious code. Source: ossf-package-analysis 9706819391825d94f76cf6530978ae5e88f3a58ccc386090ef6523825393fb...

MAL-2025-190616 Malicious code in uber-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb767de450fdafc6d2aa88f77a1f0a95188ddb866565c91258711f3434ce561e The package uber-ui was found to contain malicious code. Source: ossf-package-analysis 9706819391825d94f76cf6530978ae5e88f3a58ccc386090ef6523825393fb...

EUVD-2007-6640

Malware in sbrugna...

EUVD-2014-5653

Malware in sbrugna...

EUVD-2007-0127

Malware in sbrugna...

This Week in Spring - September 9th, 2025

Hi, Spring fans! Welcome to another installment of This Week in Spring! I am home, ensconced in my studio here in somewhat sunny San Francisco, California, relaxing and trying to catch up on stuff I missed. As always, there's a ton! So let's dive right into it. Some of the amazing features that...

Malicious code in uber-purify (npm)

The package uber-purify was found to contain malicious code...

MAL-2025-8070 Malicious code in @hopper-b2b/uber-iframe (npm)

The package @hopper-b2b/uber-iframe was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...

MAL-2025-37476 Malicious code in uber-purify (npm)

The package uber-purify was found to contain malicious code...

Malicious code in @hopper-b2b/uber-iframe (npm)

The package @hopper-b2b/uber-iframe was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...

Fedora: Security Advisory (FEDORA-2024-ec60f79b80)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress plugin UberSlider SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

Malicious code in uber-direct-js-sdk-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 30ee8294ed2bcf683f478b647f9919d6b45e0651905c29ada14a3ce392168447 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...