CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.

A new malware script surfaced on Friday that used a SQL injection attack to infect about 1,000 web pages with a malicious iFrame. The attack was a variation on last week's robint-us SQL mass infection ...

A critical SQL injection vulnerability in the open-source AI gateway LiteLLM, tracked as CVE-2026-42208, was exploited less than two days after being listed in the GitHub Advisory Database. Attackers ...

Even many years after gaining prominence as one of the most popular and convenient ways for criminals to break into corporate databases through vulnerable web applications, SQL injection still remains ...

CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to eliminate SQL injection (SQLi) security ...

Hackers are targeting sensitive information stored in the LiteLLM open-source large-language model (LLM) gateway by ...

An important aspect of database security is designing your applications to avoid SQL injection attacks. SQL injection is a form of web hacking whereby SQL statements are specified in the fields of a ...

A critical pre-authentication SQL injection vulnerability in BerriAI’s LiteLLM Python package came under active exploitation ...

The huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks and could finally push retailers to deal with Web application security flaws. This week’s ...