CVE-2026-59794: CWE-79 in JetBrains TeamCity
A stored cross-site scripting (XSS) vulnerability exists in JetBrains TeamCity versions before 2026.1.2. This vulnerability occurs on the cloud profile page via agent-reported data, allowing an…
Read the full articleYou might also wanna read

CVE-2025-14773: Cross-Site Scripting Vulnerability in ABB T-MAC Plus (Version 4.0-24)
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in ABB T-MAC Plus. This issue affects T-M
Broadcom Discloses Three Stored XSS Vulnerabilities in VMware Cloud Foundation Operations
Broadcom has disclosed three stored cross-site scripting (XSS) vulnerabilities affecting VMware Cloud Foundation Operations and several rela
cybersecuritynews.com·1mo ago
Understanding and mitigating the Jinja2 XSS vulnerability (CVE-2024-22195)
On January 11th, 2024, a significant security vulnerability was disclosed in Jinja2, a widely used Python templating library. Identified as
Critical Cursor AI IDE Vulnerabilities Allow Remote Code Execution via Prompt Injection
Two Cursor vulnerabilities enable remote code execution outside the IDE sandbox via prompt injection and terminal command execution without
Critical Cursor AI IDE Vulnerabilities Allow Remote Code Execution via Prompt Injection
Two Cursor vulnerabilities enable remote code execution outside the IDE sandbox via prompt injection and terminal command execution without

WAF - WAF Release - 2026-04-07
This week's release introduces new detections for a critical Remote Code Execution (RCE) vulnerability in MCP Server (CVE-2026-23744), along
Critical React Vulnerability (CVE-2025-55182) Enables Remote Code Execution in React 19 and Next.js
Detect and mitigate React2Shell (CVE-2025-55182), critical RCE vulnerability in React and Next.js exploited in the wild. Organizations shoul

Comments
Sign in to join the conversation.
No comments yet. Be the first.