Fetching from the wire…
01
02
03
04
05
06
07
08
Source-backed findings, relationship evidence, citations, and briefing history from the public MindPattern archive.
Pluto Security disclosed CVE-2026-33032 MCPwn enabling full server takeover
Source findingTrend Micro disclosed CVE-2026-33032 enabling nginx-ui takeover.
Source findingnginx-ui MCP authentication bypass (CVE-2026-33032) exploited actively.
Source findingnginx-ui MCP integration has critical authentication bypass vulnerability
Source finding