Unvalidated input in Anthropic’s Claude Code GitHub Action enabled complete repository takeover via a simple issue, with potential impact on all dependent downstream projects.
IBM has patched security vulnerabilities in WebSphere Application Server and Business Automation Workflow that allowed attackers to bypass security mechanisms.
A security vulnerability in WP Maps Pro allows attackers to create admin accounts without authentication, gaining full control over WordPress websites.