Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

authentik SourceStage Empty POST Authentication Bypass (CVE-2026-4348)

github.com 2026-06-03查看中文 →
Security AdvisoryCVE-2026-4348Criticalgoauthentik
Affected:
  • authentik <= 2025.12.6
  • authentik <= 2026.2.3
  • authentik <= 2026.5.0
Fixed in:
  • authentik 2025.12.6
  • authentik 2026.2.4
  • authentik 2026.5.1
Referenced CVEs: CVE-2026-49448 · 9.8
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.
More from this source
PrestaShop Password Hashing Fix: MD5 to bcrypt Upgrade Patch Analysis 2026-06-03 IDOR in API Keys Management: Overwriting API Keys via userId Injection and Patch 2026-06-03 Hunyuan3D Arbitrary File Read and SSRF Vulnerabilities with PoC and Fixes 2026-06-03 SSRF Vulnerability in blender-mcp Hunyuan3D Extension 2026-06-03 Blender-MCP Server Arbitrary File Read Vulnerability Analysis 2026-06-03
Offline Archive

Offline screenshot & PDF are Pro-exclusive

Upgrade to Pro