authentik SFE Reflected XSS Vulnerability (CVE-2026-42649)

github.com 2026-06-03查看中文 →

Security AdvisoryCVE-2026-42649Criticalauthentik

Affected:

authentik <= 2026.2.2
authentik <= 2025.12.4

Fixed in:

authentik 2026.2.3
authentik 2025.12.5

Referenced CVEs: CVE-2026-42849 · 9.3

文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive

This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.

More from this source

PrestaShop Password Hashing Fix: MD5 to bcrypt Upgrade Patch Analysis 2026-06-03 IDOR in API Keys Management: Overwriting API Keys via userId Injection and Patch 2026-06-03 Hunyuan3D Arbitrary File Read and SSRF Vulnerabilities with PoC and Fixes 2026-06-03 SSRF Vulnerability in blender-mcp Hunyuan3D Extension 2026-06-03 Blender-MCP Server Arbitrary File Read Vulnerability Analysis 2026-06-03

Offline Archive

Offline screenshot & PDF are Pro-exclusive