VDB
GHSA-h6c2-x2m2-mwhf
GHSA-h6c2-x2m2-mwhf
PUBLISHED
Exploit Intelligence
- Non-destructive vulnerability scanner for Nginx-UI MCP Endpoint Authentication Bypass (CVE-2026-33032) (github-poc-repo)
- Non-destructive vulnerability scanner for Nginx-UI MCP Endpoint Authentication Bypass (CVE-2026-33032) (github-poc-repo)
- Non-destructive vulnerability scanner for Nginx-UI MCP Endpoint Authentication Bypass (CVE-2026-33032) (github-poc-repo)
- One missing function call on the route registration was enough to turn the MCP interface into an unauthenticated RCE gateway. (github-poc-repo)
- One missing function call on the route registration was enough to turn the MCP interface into an unauthenticated RCE gateway. (github-poc-repo)
- One missing function call on the route registration was enough to turn the MCP interface into an unauthenticated RCE gateway. (github-poc-repo)
- Docker Compose setup to demonstrate the nginx-ui missing authentication vulnerability (github-poc-repo)
- Docker Compose setup to demonstrate the nginx-ui missing authentication vulnerability (github-poc-repo)
- Docker Compose setup to demonstrate the nginx-ui missing authentication vulnerability (github-poc-repo)
- One missing function call on the route registration was enough to turn the MCP interface into an unauthenticated RCE gateway. (github-poc)
…and 59 more exploits
Timeline
- CVE Published
- Apr 9, 2026 Security Advisory