ByteBrief
We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.
(We tried widescreen once. It wasn't us.)
Hackers are actively exploiting CVE-2026-20896, an authentication bypass in Gitea's official Docker image. The flaw lets unauthenticated attackers impersonate any user by sending a single X-WEBAUTH-USER header. Gitea released versions 1.26.3 and 1.26.4 to fix the issue. Around 6,200 Gitea instances are exposed on the public web.
Tap to vote and see what everyone thinks.
Summary by ByteBrief