InfoWorld

Open WebUI bug turns the ‘free model’ into an enterprise backdoor

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...
The Hacker News

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...
IEEE

APICAD: Augmenting API Misuse Detection through Specifications from Code and Documents

Abstract: Using API should follow its specifications. Otherwise, it can bring security impacts while the functionality is damaged. To detect API misuse, we need to know what its specifications are. In ...
GitHub

AgentRun: Run AI Generated Code Safely

AgentRun is a Python library that makes it easy to run Python code safely from large language models (LLMs) with a single line of code. Built on top of the Docker Python SDK and RestrictedPython, it ...

OpenAI’s Child Exploitation Reports Increased Sharply This Year

The company made 80 times as many reports to the National Center for Missing & Exploited Children during the first six months of 2025 as it did in the same period a year prior.
Game Rant

Roblox: Pet Simulator 99 Codes (January 2026)

Tom Bowen is a senior editor who loves adventure games and RPGs. He's been playing video games for several decades now and writing about them professionally since 2020. Although he dabbles in news and ...
TechCrunch

OpenAI boasts enterprise win days after internal ‘code red’ on Google threat

OpenAI released new data Monday showing enterprise usage of its AI tools has surged dramatically over the past year, with ChatGPT message volume growing 8x since November 2024 and workers reporting ...