CVE-2026-40874 - mailcow: dockerized missing authorization on Forwarding Hosts delete action
CVE ID :CVE-2026-40874 Published : April 21, 2026, 7:17 p.m. | 48 minutes ago Description :mailcow: dockerized is an open source groupware/email suite based on docker. In versions prior to 2026-03b, no administrator verification takes place when deleting Forwarding Hosts with `/api/v1/delete/f
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Advice on my cybersecurity cert path (CDSA, CPTS, AWS SAA, AZ-500)
- [CYBER] Xiongmai IP Camera Flaw Lets Attackers Bypass Authentication
- [CYBER] Every Upgrade Made Sense: How I Over-Engineered My AI Coding Setup
- [CYBER] Risk Management for Developers: A 2026 Practitioner Guide"
- [CYBER] Void Dokkaebi Hackers Spread Malware Through Fake Job Interviews
- [CYBER] Africa faces 86 million tonne fuel shortfall by 2040: finance body