CVE-2026-44693 Pi-hole FTL: Unauthenticated Session Hijacking via Race Condition on Global Session Buffer

Pi-hole FTL is the core engine of the Pi-hole network-level advertisement and tracker blocker. Prior to version 6.6.1, Pi-hole FTL contains a race condition vulnerability in the HTTP session management subsystem, introduced with the v6.0 rewrite of the embedded CivetWeb-based web server. This iss...

Pi-hole 操作系统命令注入漏洞

Pi-hole is a network-level ad-blocking application from Pi-hole, Inc. A security vulnerability exists in Pi-hole core 5.2.4, which originates in the Linux network-level ad and Internet tracking blocking application...