B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News

CVE-2026-50160 - Mass Assignment via Onboarding Endpoint Allows Unauthenticated JWT_SECRET Overwrite

CVE ID :CVE-2026-50160 Published : July 1, 2026, 5:48 p.m. | 5 hours, 24 minutes ago Description :Hoppscotch is an API development ecosystem. In self-hosted deployments of hoppscotch-backend from version 2026.4.1 and earlier, the unauthenticated POST /v1/onboarding/config endpoint is...

Original-Artikel öffnen Zurück zur Übersicht