vulnerability

103 pieces of writing

CVE-2025-10492: a Java deserialisation flaw in JasperReports gives attackers remote code execution on Hitachi Energy Ellipse

CVE-2025-10492, a CVSS 9.8 Java deserialisation flaw in the JasperReports component of Hitachi Energy Ellipse, enables unauthenticated RCE on critical manufacturing systems. No patch exists for the community edition of the underlying library.

6 April 2026

vulnerability5 min read

Edict's file:// handler let anyone read files outside the project directory (CWE-22)

5 April 2026

vulnerability5 min read

AIPex's localhost daemon let any website control your browser through a WebSocket

3 April 2026

siemens6 min read

Two CVEs in Siemens SICAM 8 firmware expose three product families to unauthenticated denial of service

CVE-2026-27663 and CVE-2026-27664 affect shared firmware components across Siemens SICAM A8000, EGS and S8000 product lines, enabling unauthenticated denial of service in power grid infrastructure.

3 April 2026

security10 min read

LangFlow, n8n and the pattern where AI configuration becomes code execution

1 April 2026

ics6 min read

Anritsu's spectrum monitors have no authentication and the vendor has no plans to add it

1 April 2026

vulnerability7 min read

Every MCPHub instance started with the same admin password. I changed that.

MCPHub shipped every installation with the hardcoded credential admin/admin123 and published it in the README. The fix generates a cryptographically random password per instance.

30 March 2026

vulnerability7 min read

LightRAG's Memgraph backend had a Cypher injection vulnerability hiding in plain sight

28 March 2026

security12 min read

Environment variables are the new command line: how AI agents keep leaking secrets through configuration files

28 March 2026

vulnerability7 min read

A single index change bypassed daily_stock_analysis's entire rate limiter

A self-hosted stock analysis platform trusted the leftmost X-Forwarded-For entry for rate limiting, letting attackers rotate IPs and brute-force the admin login at will.

26 March 2026

vulnerability7 min read

PraisonAI let YAML config files set LD_PRELOAD and nobody checked

25 March 2026

security12 min read

Git tags, package registries and extension marketplaces share the same broken authentication model

24 March 2026

vulnerability8 min read

gptme was passing API keys on the command line where any user could read them

gptme's evaluation runner passed API keys as Docker CLI arguments, exposing them to every user on the system via ps or /proc. The fix took one file and five tests.

23 March 2026

security7 min read

Hermes Agent's worktree feature copied arbitrary files from your filesystem

19 March 2026

security7 min read

Summarize's localhost daemon accepted requests from any website

11 March 2026

Weekly digests

vulnerability

CVE-2025-10492: a Java deserialisation flaw in JasperReports gives attackers remote code execution on Hitachi Energy Ellipse

Edict's file:// handler let anyone read files outside the project directory (CWE-22)

AIPex's localhost daemon let any website control your browser through a WebSocket

Two CVEs in Siemens SICAM 8 firmware expose three product families to unauthenticated denial of service

LangFlow, n8n and the pattern where AI configuration becomes code execution

Anritsu's spectrum monitors have no authentication and the vendor has no plans to add it

Every MCPHub instance started with the same admin password. I changed that.

LightRAG's Memgraph backend had a Cypher injection vulnerability hiding in plain sight

Environment variables are the new command line: how AI agents keep leaking secrets through configuration files

A single index change bypassed daily_stock_analysis's entire rate limiter

PraisonAI let YAML config files set LD_PRELOAD and nobody checked

Git tags, package registries and extension marketplaces share the same broken authentication model

gptme was passing API keys on the command line where any user could read them

Hermes Agent's worktree feature copied arbitrary files from your filesystem

Summarize's localhost daemon accepted requests from any website

Weekly threat intelligence digest — 2026-W25

Weekly threat intelligence digest — 2026-W23

Weekly threat intelligence digest — 2026-W22

Weekly threat intelligence digest — 2026-W21

Weekly threat intelligence digest — 2026-W20

Weekly threat intelligence digest — 2026-W19

Weekly threat intelligence digest — 2026-W17

Weekly threat intelligence digest — 2026-W16

Weekly threat intelligence digest — 2026-W15

Weekly threat intelligence digest — 2026-W14

Weekly threat intelligence digest — 2026-W13

Weekly threat intelligence digest — 2026-W12

Weekly threat intelligence digest — 2026-W11

Weekly threat intelligence digest — 2026-W10

Weekly threat intelligence digest — 2026-W09

Weekly threat intelligence digest — 2026-W08

Weekly threat intelligence digest — 2026-W07

Weekly threat intelligence digest — 2026-W06

Weekly threat intelligence digest — 2026-W05

Weekly threat intelligence digest — 2026-W04

Weekly threat intelligence digest — 2026-W03

Weekly threat intelligence digest — 2026-W02

Weekly threat intelligence digest — 2025-W52

Weekly threat intelligence digest — 2025-W51

Weekly threat intelligence digest — 2025-W50

Weekly threat intelligence digest — 2025-W49

Weekly threat intelligence digest — 2025-W48

Weekly threat intelligence digest — 2025-W47

Weekly threat intelligence digest — 2025-W46

Weekly threat intelligence digest — 2025-W45

Weekly threat intelligence digest — 2025-W44

Weekly threat intelligence digest — 2025-W43

Weekly threat intelligence digest — 2025-W42

Weekly threat intelligence digest — 2025-W41

Weekly threat intelligence digest — 2025-W40

Weekly threat intelligence digest — 2025-W39

Weekly threat intelligence digest — 2025-W38

Weekly threat intelligence digest — 2025-W37

Weekly threat intelligence digest — 2025-W36

Weekly threat intelligence digest — 2025-W35

Weekly threat intelligence digest — 2025-W34

Weekly threat intelligence digest — 2025-W33

Weekly threat intelligence digest — 2025-W32

Weekly threat intelligence digest — 2025-W31

Weekly threat intelligence digest — 2025-W30

Weekly threat intelligence digest — 2025-W29

Weekly threat intelligence digest — 2025-W28

Weekly threat intelligence digest — 2025-W27

Weekly threat intelligence digest — 2025-W26

Weekly threat intelligence digest — 2025-W25

Weekly threat intelligence digest — 2025-W24

Weekly threat intelligence digest — 2025-W23

Weekly threat intelligence digest — 2025-W21

Weekly threat intelligence digest — 2025-W20

Weekly threat intelligence digest — 2025-W19

Weekly threat intelligence digest — 2025-W17

Weekly threat intelligence digest — 2025-W16

Weekly threat intelligence digest — 2025-W15

Weekly threat intelligence digest — 2025-W13

Weekly threat intelligence digest — 2025-W12

Weekly threat intelligence digest — 2025-W11

Weekly threat intelligence digest — 2025-W10

Weekly threat intelligence digest — 2025-W07

Weekly threat intelligence digest — 2025-W06