A critical security flaw impacting Langflow has come under active exploitation within 20 hours of public disclosure, highlighting the speed at which threat actors weaponize newly published vulnerabilities.
The security defect, tracked as CVE-2026-33017 (CVSS score: 9.3), is a case of missing authentication combined with code injection that could result in remote code execution.
“The POST /api/v1
Boy, 17, among two more arrested on suspicion of murder after collision involving pedestrian
Two more people – including a 17-year-old boy – have been arrested on suspicion of murder after a man died following a collision in Barnsley.
