1063 matches found
CVE-2025-30359 vulnerabilities
Vulnerabilities for packages: argo-workflows...
GHSA-9JGG-88MC-972H vulnerabilities
Vulnerabilities for packages: argo-workflows...
GHSA-4V9V-HFQ4-RM2V vulnerabilities
Vulnerabilities for packages: argo-workflows...
CVE-2025-30359 vulnerabilities
Vulnerabilities for packages: argo-workflows...
CVE-2025-30360 vulnerabilities
Vulnerabilities for packages: argo-workflows...
GHSA-4V9V-HFQ4-RM2V vulnerabilities
Vulnerabilities for packages: argo-workflows...
GHSA-9JGG-88MC-972H vulnerabilities
Vulnerabilities for packages: argo-workflows...
📄 Microsoft SharePoint 2019 NTLM Authentication Information Disclosure
Microsoft SharePoint Central Administration improperly exposes NTLM-authenticated endpoints to low-privileged or even brute-forced domain accounts. Once authenticated, an attacker can access the api/web endpoint, disclosing rich metadata about the SharePoint site, including user group...
Malicious code in workflows-template (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e1496b26e69a907ccdfa4de45ea382e2c22b156aaa97629f76574f17d12eff2 Any computer that has this package installed or running should be considered...
MAL-2025-5334 Malicious code in workflows-template (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e1496b26e69a907ccdfa4de45ea382e2c22b156aaa97629f76574f17d12eff2 Any computer that has this package installed or running should be considered...
The Rise of Agentic AI: Uncovering Security Risks in AI Web Agents
In our first post, we introduced the world of AI web agents - defining what they are, outlining their core capabilities, and surveying the leading frameworks that make them possible. Now, we’re shifting gears to look at the other side of the coin: the vulnerabilities and attack surfaces that aris...
Malicious code in workflows-templates (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9c885607af191f5acc692b6c3050cc0bbdf52d98ab543e79cef7d32387e247d Any computer that has this package installed or running should be considered...
MAL-2025-5319 Malicious code in workflows-templates (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9c885607af191f5acc692b6c3050cc0bbdf52d98ab543e79cef7d32387e247d Any computer that has this package installed or running should be considered...
Why a Classic MCP Server Vulnerability Can Undermine Your Entire AI Agent
A single SQL injection bug in Anthropic’s SQLite MCP server—forked over 5,000 times—can seed stored prompts, exfiltrate data, and hand attackers the keys to entire agent workflows. This entry unpacks the attack chain and lays out concrete fixes to shut it down...
GHSA-V6H2-P8H4-QCJW vulnerabilities
Vulnerabilities for packages: code-server, kubeflow-pipelines, sqlpad, tileserver-gl, argo-workflows, eslint, kubeflow-centraldashboard, vitess, opensearch-dashboards, npm, node-gyp, langfuse, renovate, pulumi, lerna, rancher-api-ui, prism...
CVE-2025-5889 vulnerabilities
Vulnerabilities for packages: code-server, kubeflow-pipelines, sqlpad, tileserver-gl, argo-workflows, eslint, kubeflow-centraldashboard, vitess, opensearch-dashboards, npm, node-gyp, langfuse, renovate, pulumi, lerna, rancher-api-ui, prism...
GHSA-V6H2-P8H4-QCJW vulnerabilities
Vulnerabilities for packages: arangodb, node-gyp, emsdk, kubeflow-centraldashboard, graalvm, langfuse-fips, pulumi, vitess, rancher-api-ui, tileserver-gl, kubeflow-pipelines, langfuse, opensearch-dashboards-fips, kibana, tileserver-gl-fips, sqlpad, foxx-cli, argo-workflows, code-server, lerna, np...
CVE-2025-5889 vulnerabilities
Vulnerabilities for packages: arangodb, node-gyp, emsdk, kubeflow-centraldashboard, graalvm, langfuse-fips, pulumi, vitess, rancher-api-ui, tileserver-gl, kubeflow-pipelines, langfuse, opensearch-dashboards-fips, kibana, tileserver-gl-fips, sqlpad, foxx-cli, argo-workflows, code-server, lerna, np...
Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity
Learn how Trend Micro and NEOM McLaren Formula E Team turn creativity into innovation by rethinking team structures, workflows, and data use...
The Hidden Threat in Your Stack: Why Non-Human Identity Management is the Next Cybersecurity Frontier
Modern enterprise networks are highly complex environments that rely on hundreds of apps and infrastructure services. These systems need to interact securely and efficiently without constant human oversight, which is where non-human identities NHIs come in. NHIs — including application secrets, A...