Skip to main content
Loading…
    CVE-2026-40471 — hackage-server lacked Cross-Site Request Forgery (CSRF) protection across its endpoints. Scripts on foreign sites could trigger requests to hackage server, possibly abusing latent credentials to uploa — CVE Database · The Intelligence Room