CISA: New Langflow flaw actively exploited to hijack AI workflows

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...
The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...
GitHub

CVE-2023-34939-PoC.md

Onlyoffice Community Server is a collaborative platform for managing documents, projects and customer relations. Recently, a security vulnerability was discovered in this software version that could ...