[High] CVE-2026-46484 – Headplane is a feature-complete Web UI for Headscale. Prior to versions 0.6.3 an...
High CVE-2026-46484 Headplane is a feature-complete Web UI for Headscale. Prior to versions 0.6.3 and 0.7.0-beta.3, Headplane was vulnerable to a path traversal / authorization bypass in the Headscale API client used by node and user rename operations. This issue has been patched in versions 0.6.3...