Hauptseiten
Startseite
CyberNews
Quick IT-Tools
Suche
Updates
Security Tools
Breach Check
Phishing Check
IoC Extractor
SSL Check
E-Mail Header Analyzer
CVE-Suche
Software Check NEU
IT-Praxis
Firewall Rules
Security Checklists
Incident Response
Regex Tester NEU
Cron Builder NEU
Log Analyzer NEU
Informationen
Dokumentation
Statistiken
Impressum
Datenschutz
RSS Feed
© 2026 b3ncloud.net
B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News

CVE-2026-61684 - FastGPT: Unauthenticated cross-tenant data access via forgeable plugin-invoke JWT (default INVOKE_TOKEN_SECRET='token')

CVE ID :CVE-2026-61684 Published : July 15, 2026, 3:16 p.m. | 1 hour, 17 minutes ago Description :FastGPT is a knowledge-based AI application platform. In 4.15.0-beta4, FastGPT plugin invoke reverse-call endpoints under /api/invoke/* authenticate only by verifying a JWT signed with...

Original-Artikel öffnen Zurück zur Übersicht