authentication
authentication
- CVE-2026-39831 - Go x/crypto ssh FIDO presence bypass
- CVE-2026-48039 - Meta Ads MCP HTTP tool auth bypass
- CVE-2025-3248 - Langflow validate/code unauthenticated RCE
- CVE-2025-49596 - MCP Inspector proxy unauthenticated RCE
- CVE-2026-0723 - GitLab 2FA device response bypass
- CVE-2026-10143 - kafka-python SCRAM iteration count DoS
- CVE-2026-45063 - Symfony X509Authenticator DN identity spoofing
- CVE-2026-47391 - PraisonAI A2A eval tool RCE
- GHSA-63gr-g7jc-v8rg - AgenticMail MCP HTTP auth bypass
- CVE-2026-27478 - Unity Catalog JWT issuer bypass
- CVE-2026-41428 - Budibase public endpoint auth bypass
- CVE-2026-39858 - Traefik forwarded alias auth bypass
- CVE-2026-41574 - Nhost OAuth email verification bypass
- CVE-2026-42354 - Sentry SAML SSO identity linking
- CVE-2026-42560 - go-pkgz/auth Patreon identity collision
- CVE-2026-7458 - WordPress User Verification OTP auth bypass
- CVE-2026-7567 - WordPress Temporary Login auth bypass