Tagged with

Your AI Agent’s Credentials Are Leaking Right Now: The BadHost Exploit

One malformed HTTP header bypasses auth on millions of MCP servers. Here’s how CVE-2026-48710 works, what data was found exposed, and what to patch immediately.