Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure ...

Google may allow users to disable WebGPU in Chrome via Android Advanced Protection Mode to shield users from sophisticated online attacks.

Fortinet, Ivanti, and Intel have released fixes for dozens of vulnerabilities, including high-severity bugs leading to code execution.

SAP released 15 new security notes on its March 2026 Security Patch Day, including two that resolve critical vulnerabilities ...

GPT-5.4 seems to blend these lineages. Early benchmarks suggest it maintains Codex-level coding reliability while incorporating stronger planning capabilities. For OpenClaw agents that need to both ...

Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction ...

WatchGuard has warned customers to patch a critical, actively exploited remote code execution (RCE) vulnerability in its Firebox firewalls. Tracked as CVE-2025-14733, this security flaw affects ...

A new report out today from artificial intelligence security startup Cyata Security Ltd. details a critical remote code execution vulnerability in Cursor Inc.’s integrated development environment that ...

A critical sandbox escape vulnerability in Grist-Core has been disclosed that allows remote code execution (RCE) through a single malicious spreadsheet formula. The issue was uncovered by Cyera ...

Agent skills shift AI agents toward procedural tasks with skill.md steps; progressive disclosure reduces context window bloat in real use.