CVE-2026-41074
CVE-2026-41074 affects RT (Resource Tracker) versions 6.0.0–6.0.2, where a Cross-Site Request Forgery (CSRF) vulnerability exists. An attacker who lures a logged-in RT user to visit a malicious page can trigger arbitrary state-changing actions in RT on that user’s behalf. The issue is fixed in RT...