CVE ID: CVE-2026-26964 Severity: 2.7/10 (Low) Affected Versions: = 1.635.0 Package: ghcr.io/windmill-labs/windmill (Docker) Description: - Summary: - Non-administrative workspace members can retrieve the Slack OAuth client secret through the endpoint, which should be restricted to admins. - Details: - Regular users can see a redacted version of workspace settings but the Slack OAuth secret is exposed due to an implementation flaw. - PoC: - Demonstrates steps to log in as an admin and non-admin user, configure OAuth, and retrieve the secret improperly. - Impact: - Unauthorized access to the Slack OAuth client secret. - Potential for Slack application impersonation or phishing attacks. - Violation of the principle of least privilege.