Dark Reading

Solr Search Tool Can Allow Remote Code Execution (RCE) by Default

A security vulnerability affecting the Linux enterprise search tool Apache Solr has been reclassified by Tenableas "high severity status." It seems that the default configuration of Solr on Solr 8.1.1 ...
CSO Online

Prompt injection turned Google’s Antigravity file search into RCE

A prompt injection flaw in Google’s Antigravity IDE turns a file search tool into a remote code execution vector, bypassing ...