Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
CSO Online

Hackers exploit a critical Flowise flaw affecting thousands of AI workflows

The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...
SecurityWeek

Critical Flowise Vulnerability in Attacker Crosshairs

Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.

Defence secretary reveals month-long Russian submarine operation over cables and pipelines north of UK

John Healey says three Russian submarines left after being monitored "24/7" by UK forces, with no damage reported. He tells ...

Keycloak 26.6 brings zero-downtime updates and workflows

The open-source IAM system Keycloak 26.6 promotes five features to production status – including federated client ...
The Hacker News

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

CVE-2025-59528 exploited in Flowise for over six months across 12,000+ exposed instances, enabling full system compromise.

Advocacy groups file constitutional challenge of Ontario’s Special Economic Zones Act

Ontario legislation that allows for “special economic zones,” where all provincial laws can be suspended, gives Premier Doug ...

Claude Code Leak 2026: Why Teams Are Turning to AICC for Stable Multi-Model AI API Integration

SHENZHEN, GUANGDONG, CHINA, April 3, 2026 /EINPresswire.com/ -- On March 31, 2026, Anthropic released version 2.1.88 of ...

Google Core Update, Crawl Limits & Gemini Traffic Data – SEO Pulse

Google's March core update is rolling out. Illyes explains Googlebot's crawling architecture, and Gemini referral traffic ...
News.az

The flowise AI crisis: why 12,000+ exposed servers are a hacker's playground

Threat actors are exploiting a maximum-severity security flaw in Flowise, an open-source artificial intelligence (AI) ...

Iran warns it will respond if Israeli attacks on Lebanon don't stop immediately

Israel and the US say Lebanon is not included in a two-week ceasefire deal with Iran. PM Benjamin Netanyahu says Israel ...
Developer Tech

AI code scanners halt Internet Bug Bounty payouts

The Internet Bug Bounty program has paused new submissions, citing a massive expansion in vulnerability discovery by AI code ...