The Hacker News

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

Research shows a .NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.

GeminiJack Zero-Click Flaw Exposed Millions of Users in Google Workspace AI

Noma Labs uncovers GeminiJack, a zero-click flaw where hidden instructions in shared Workspace files could steer Gemini Enterprise and leak corporate data.