Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
GitHub

Pentest TeamCity using Metasploit

This is a comment from the vendor (JetBrains TeamCity team) by Yegor Yarko: Majority of the content of the article describes how malicious users can abuse TeamCity if they are rightfully granted ...