Blog

The AISafe Blog

Security research, CVE writeups, and practical guidance for securing modern applications.

Featured

"Please perform a comprehensive security audit" - and why it doesn’t work

Why Claude Code or Codex won't secure your application, and how AISafe Labs found 7 CVEs in a file hosting app where they couldn't.

Šimon ŠustekŠimon Šustek
Fineas SilaghiFineas Silaghi
Read More
"Please perform a comprehensive security audit" - and why it doesn't work
The LinkedIn Scam That Gets You Hacked

The LinkedIn scam that gets you hacked

Solving a take-home interview test can quickly turn into a nightmare. Notes on developer trust, JavaScript malware, and autonomous detection.

July 9, 2026

Read More
Command Injection in Warp Terminal

Command Injection in Warp Terminal

Two command injection vulnerabilities in Warp Terminal (CVE-2026-48703 and CVE-2026-48731, both 7.8 High). Both run code through a file name or path: one is a file you open in an editor, the other is a path you hand Warp's AI agent to search.

June 9, 2026

Read More
CSP2XSS: Vulnerability in Next.js App Router

CSP2XSS: Vulnerability in Next.js App Router

A single HTTP request with a crafted Content-Security-Policy header breaks out of an HTML attribute and injects script content into framework-generated <script> tags. Cached responses propagate the payload to every later visitor.

May 8, 2026

Read More
Traces of RCE: Exploiting Langfuse Prototype Pollution

Traces of RCE: Exploiting Langfuse Prototype Pollution

An authenticated OTel trace with maliciously crafted attribute key can enable cross-project trace exposure and remote code execution.

May 7, 2026

Read More
Critical RCE vulnerability in LiteLLM Proxy

Critical RCE vulnerability in LiteLLM Proxy

We independently discovered and chained two vulnerabilities in LiteLLM Proxy into unauthenticated RCE. Upgrade to v1.83.7-stable.

April 22, 2026

Read More
CVE-2026-35455: Stored XSS via OCR Text in Immich's Panorama Viewer

CVE-2026-35455: Stored XSS via OCR Text in Immich's Panorama Viewer

Paint HTML as visible text on a 360° image. PaddleOCR extracts it, the database stores it, and the panorama viewer hands it to innerHTML. Any user who opens the OCR overlay runs your JavaScript.

April 9, 2026

Read More
CVE-2026-29772: Memory DoS in Astro Server Islands

CVE-2026-29772: Memory DoS in Astro Server Islands

A single POST request can exhaust your server's memory. The vulnerable endpoint is registered by default, even if you don't use Server Islands.

March 26, 2026

Read More
"Please perform a comprehensive security audit" - and why it doesn't work

"Please perform a comprehensive security audit" - and why it doesn’t work

How Claude Code or Codex won't secure your application, and why AISafe found 7 CVEs in a file hosting app where they couldn't.

March 16, 2026

Read More

Subscribe to our newsletter.

I hereby consent to receiving marketing and promotional communications
in accordance with AISafe's Privacy Policy.