Dark Reading

What's Bugging the NSA? A Vuln in Its 'SkillTree' Training Platform

The National Security Agency (NSA) has patched a cross-site request forgery (CSRF) vulnerability in its open source employee training platform known as SkillTree, showcasing how difficult this class ...
Hosted on MSN

Atlas vuln lets crims inject malicious prompts ChatGPT won't forget between sessions

This exploit, dubbed ChatGPT Tainted Memories by browser security vendor LayerX's researchers, who found and disclosed the security hole to OpenAI, involves some level of social engineering in that it ...
Searchenginejournal.com

Inspiro WordPress Theme Vulnerability Affects Over 70,000 Sites

A vulnerability advisory was published for the Inspiro WordPress theme by WPZoom. The vulnerability arises due to a missing or incorrect security validation that enables an unauthenticated attacker to ...