DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
GHSA-GPX9-96J6-PP87: The Call Is Coming From Inside The Container: TaskWeaver's Docker Escape
cverports profile

GHSA-GPX9-96J6-PP87: The Call Is Coming From Inside The Container: TaskWeaver's Docker Escape

#security #cve #cybersecurity #ghsa
Comments
2 min read
🚨 ClawdBot (Moltbot): Powerful AI Agents, Real Automation… and Real Risks
igorgbr profile

🚨 ClawdBot (Moltbot): Powerful AI Agents, Real Automation… and Real Risks

#beginners #productivity #security #automation
Comments
3 min read
Clickjacking — when your users click things they never meant to
liudasjan profile

Clickjacking — when your users click things they never meant to

#cybersecurity #security #ui #webdev
1
Comments
1 min read
Gerenciamento de Atualizações e Evolução Contínua de Software com IA
vinicius3w profile

Gerenciamento de Atualizações e Evolução Contínua de Software com IA

#ai #devops #security #softwareengineering
Comments
15 min read
OWASP Top 10 – A04: Insecure Design (Remediation Perspective)
hassamdev profile

OWASP Top 10 – A04: Insecure Design (Remediation Perspective)

#security #systemdesign #owasp
Comments
2 min read
Don’t Trust Your Agents. Trust Your Boundary: a runtime authorization layer for LLM tool calls.
naol_zewudu_1f3e4284bad37 profile

Don’t Trust Your Agents. Trust Your Boundary: a runtime authorization layer for LLM tool calls.

#agents #ai #llm #security
Comments
6 min read
x402 V2 Just Dropped: 5 Security Changes Every AI Agent Builder Needs to Know
mkmkkkkk profile

x402 V2 Just Dropped: 5 Security Changes Every AI Agent Builder Needs to Know

#x402 #security #ai #blockchain
2
Comments 1
7 min read
CVE-2024-4990: Magic Methods, Tragic Endings: RCE in Yii2 via Unsafe Reflection
cverports profile

CVE-2024-4990: Magic Methods, Tragic Endings: RCE in Yii2 via Unsafe Reflection

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-54997: The Janitor's Key: Turning OpenBao Audit Logs into RCE
cverports profile

CVE-2025-54997: The Janitor's Key: Turning OpenBao Audit Logs into RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution
cverports profile

CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono
cverports profile

CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key
cverports profile

CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key

#security #cve #cybersecurity
Comments
2 min read
GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization
cverports profile

GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization

#security #cve #cybersecurity #ghsa
Comments
2 min read
GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers
cverports profile

GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE
cverports profile

CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE

#security #cve #cybersecurity
Comments
2 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.