Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full server takeover without authentication. [...]

Security Aid April 15, 2026 1 minute read

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full server takeover without authentication. […]A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full server takeover without authentication. […] Read MoreBleepingComputer

About The Author

Security Aid

See author's posts

Security Aid

Related Stories

New AgingFly malware used in attacks on Ukraine govt, hospitals

NIST narrows scope of CVE analysis to keep up with rising tide of vulnerabilities

Executive orders likely ahead in next steps for national cyber strategy