H1-3680038 — Vulnetix

Try Vulnetix Request Demo

H1-3680038 PUBLISHED

Digest Auth State Leak on Cross-Origin Redirect via Netrc - Username and Password Hash Sent to Wrong Host

Timeline

Apr 19, 2026 CVE Published
Apr 19, 2026 PoC Published

References

Digest Auth State Leak on Cross-Origin Redirect via Netrc - Username and Password Hash Sent to Wrong Host advisory

Open in Interactive Console →