DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
Gerenciamento de Atualizações e Evolução Contínua de Software com IA
vinicius3w profile

Gerenciamento de Atualizações e Evolução Contínua de Software com IA

#ai #devops #security #softwareengineering
Comments
15 min read
OWASP Top 10 – A04: Insecure Design (Remediation Perspective)
hassamdev profile

OWASP Top 10 – A04: Insecure Design (Remediation Perspective)

#security #systemdesign #owasp
Comments
2 min read
Don’t Trust Your Agents. Trust Your Boundary: a runtime authorization layer for LLM tool calls.
naol_zewudu_1f3e4284bad37 profile

Don’t Trust Your Agents. Trust Your Boundary: a runtime authorization layer for LLM tool calls.

#agents #ai #llm #security
Comments
6 min read
x402 V2 Just Dropped: 5 Security Changes Every AI Agent Builder Needs to Know
mkmkkkkk profile

x402 V2 Just Dropped: 5 Security Changes Every AI Agent Builder Needs to Know

#x402 #security #ai #blockchain
2
Comments 1
7 min read
CVE-2024-4990: Magic Methods, Tragic Endings: RCE in Yii2 via Unsafe Reflection
cverports profile

CVE-2024-4990: Magic Methods, Tragic Endings: RCE in Yii2 via Unsafe Reflection

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-54997: The Janitor's Key: Turning OpenBao Audit Logs into RCE
cverports profile

CVE-2025-54997: The Janitor's Key: Turning OpenBao Audit Logs into RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono
cverports profile

CVE-2026-22817: Identity Theft on the Edge: Exploiting JWT Algorithm Confusion in Hono

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution
cverports profile

CVE-2026-22785: Orval Overload: From OpenAPI Spec to Remote Code Execution

#security #cve #cybersecurity
Comments
2 min read
GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization
cverports profile

GHSA-F2MF-Q878-GH58: Parsl Tongue: SQL Injection in High-Performance Computing Visualization

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key
cverports profile

CVE-2026-23996: The Tell-Tale Delay: Timing Side-Channels in fastapi-api-key

#security #cve #cybersecurity
Comments
2 min read
GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers
cverports profile

GHSA-VX9W-5CX4-9796: Crawl4AI: When Web Scrapers Become File Servers

#security #cve #cybersecurity #ghsa
Comments
2 min read
CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE
cverports profile

CVE-2026-22200: Paper Cuts to Pwnage: Turning osTicket PDF Exports into RCE

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-22708: Trust Issues: Bypassing Cursor AI's 'Safe Mode' via Shell Built-ins
cverports profile

CVE-2026-22708: Trust Issues: Bypassing Cursor AI's 'Safe Mode' via Shell Built-ins

#security #cve #cybersecurity
Comments
2 min read
CVE-2025-32444: Pickle Rick-Roll: Critical RCE in vLLM's Mooncake Integration
cverports profile

CVE-2025-32444: Pickle Rick-Roll: Critical RCE in vLLM's Mooncake Integration

#security #cve #cybersecurity
Comments
2 min read
CVE-2026-21441: The Invisible Avalanche: urllib3 Decompression Bomb
cverports profile

CVE-2026-21441: The Invisible Avalanche: urllib3 Decompression Bomb

#security #cve #cybersecurity
Comments
2 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.