phantom-agent 0.9.138

April 5, 2026 • Source: NewsAPI.org

The Phantom-Agent 0.9.138 AI-powered penetration testing tool contains a critical vulnerability allowing unauthorized remote code execution (RCE) due to flawed input validation in its autonomous offensive security intelligence modules. This exposes enterprises using the tool to potential data breaches, lateral movement, and full system compromise, with no CVE ID yet assigned but active exploitation observed in the wild.

Autonomous Offensive Security Intelligence - AI-powered penetration testing

This article is best viewed with JavaScript enabled. Visit: https://10alert.com/article/phantom-agent-09138-bb5ae483