CVE-2026-57855 - Cockpit CMS Missing Authorization in Bucket File Storage API
CVE ID :CVE-2026-57855 Published : July 13, 2026, 11:16 p.m. | 1 hour, 17 minutes ago Description :Cockpit CMS contains a missing authorization vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php executes bucket...