Skip to main content
Loading…
    CVE-2026-32993 — Improper sanitization of the `status` query parameter of the `/unprotected/nova_error` endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response. — CVE Database · The Intelligence Room