Bleeping Computer

Path traversal flaw in AI dev platform Langflow exploited in attacks

Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write arbitrary files on exposed servers. Langflow is an ...

You can now browse and install PowerToys Command Palette extensions within the app

The latest PowerToys update introduces a built‑in Extension Gallery and brings improvements to Dock, PowerDisplay, and ZoomIt ...