Researchers who found the bug warn that its Moderate rating understates a threat reaching across LLM gateways, MCP servers and agent infrastructure.

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. The flaw is tracked as ...

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to breach the servers running them and make off with sensitive data and ...

FastAPI is a Python framework. It is a framework for building APIs at high speed, and in recent years, it has gained overwhelming popularity and market share in API development, microservices, and ...

Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter ...

Google Drive Management API is a FastAPI-based backend application that integrates with Google Drive using OAuth 2.0 authentication. The project allows users to authenticate with their Google account, ...

A serious security vulnerability in a widely used open-source Python component could put a large number of AI agents and platforms at risk.  The ...

A new tool enters a growing AI testing market as analysts say most organizations still do not evaluate agent behavior before ...