Nginx

  • Fix Errors & Problems13-year-old bug in ActiveMQ lets hackers remotely execute commands
    Admin5 hours ago
    0 0

    Critical Nginx UI auth bypass flaw now actively exploited in the wild

    A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full server takeover without authentication. The flaw, tracked as CVE-2026-33032, is caused by nginx-ui leaving the ‘/mcp_message’ endpoint unprotected, allowing remote attackers to invoke privileged MCP actions without credentials. Because those actions involve writing and reloading nginx configuration files, a…

    Read More »
Back to top button