CVE-2026-42202 nova-toggle-5: Improper authorization on toggle endpoint allowed non-Nova users to modify boolean fields

nova-toggle-5 enables fliping booleans in the index. Prior to version 1.3.0, the toggle endpoint POST/nova-vendor/nova-toggle/toggle/resource/resourceId was protected only by web + auth: middleware. Any user authenticated on the configured guard could call the endpoint and flip boolean attributes...

Improper Authorization

Overview Affected versions of this package are vulnerable to Improper Authorization via the toggle endpoint. An attacker can modify boolean fields on any resource by sending requests to the endpoint with arbitrary attribute parameters, even if they do not have access to the Nova admin area, as lo...

CVE-2026-28216

CVE-2026-28216 affects Hoppscotch before 2026.2.0. The issue is an improper authorization check in the user environments flow: the updateUserEnvironment mutation uses GqlAuthGuard but lacks a @GqlUser() decorator, so the service can process only the environment ID (no ownership filter) and execut...

curl: Alt-Svc bypasses credential leak protection (CVE-2018-1000007)

Summary I found a bug where curl's Alt-Svc implementation fails to strip sensitive authentication headers Authorization and Cookies when remapping a connection to a different host or port. This essentially bypasses the security fix for CVE-2018-1000007. While auditing the code, I noticed that...