CVE-2026-42945

Daily digests

A vulnerability in NGINX's rewrite module (ngx_http_rewrite_module) could let an attacker send crafted requests that break rewrite rule processing. Depending on the configuration, this could lead to unexpected behavior, bypassing access controls, or crashing the worker process. Since the rewrite module is enabled by default in most NGINX configs, exposure is broad.

• Daily Digest · May 18, 2026

  PostgreSQL refint RCE + NGINX rewrite bypass