Hoppscotch-backend Mass Assignment on Onboarding Endpoint Allows Unauthenticated JWT_SECRET Overwrite (CVE-2026-XXXX)
Security AdvisoryCriticalHoppscotch
Affected:
- hoppscotch-backend (Self-Hosted) <= 2026.4.1
Fixed in:
- 2026.5.0
Referenced CVEs: CVE-2026-50160 · 10.0
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.