https://cybercrime.club/tags/llm-security/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usThu, 30 Apr 2026 11:10:34 -0400https://cybercrime.club/posts/litellm-cve-2026-42208-preauth-sqli-ai-gateway/Thu, 30 Apr 2026 11:10:34 -0400https://cybercrime.club/posts/litellm-cve-2026-42208-preauth-sqli-ai-gateway/A pre-authentication SQL injection in LiteLLM's auth path (CVSS 9.3) lets an unauthenticated attacker read and modify the proxy database — including upstream OpenAI and Anthropic API keys. First exploitation hit 36 hours after the advisory.vulnerabilities