<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>cybercrime.club</title><link>https://cybercrime.club/tags/misconfiguration/</link><description>Infrastructure security news for people who build infrastructure.</description><generator>Hugo -- gohugo.io</generator><language>en-us</language><lastBuildDate>Tue, 07 Jul 2026 11:07:00 -0400</lastBuildDate><atom:link href="https://cybercrime.club/tags/misconfiguration/" rel="self" type="application/rss+xml"/><item><title>Gitea CVE-2026-20896: Docker Images Trusted a Spoofable Header for Admin Access, Now Under Active Probing</title><link>https://cybercrime.club/posts/gitea-cve-2026-20896-docker-trusted-proxy-header-auth-bypass/</link><pubDate>Tue, 07 Jul 2026 11:07:00 -0400</pubDate><guid>https://cybercrime.club/posts/gitea-cve-2026-20896-docker-trusted-proxy-header-auth-bypass/</guid><description>Gitea's official Docker images shipped with reverse-proxy header trust wide open by default, letting anyone who can reach the port impersonate any user including an admin — Sysdig has now caught the first in-the-wild probing, 13 days after disclosure.</description><category>vulnerabilities</category></item></channel></rss>