CVE-2026-45223 – Crabbox < 0.9.0 Authentication Bypass via Admin Claim Injection
CVE ID :CVE-2026-45223 Published : May 11, 2026, 7:16 p.m. | 28 minutes ago Description :Crabbox before 0.9.0 contains an authentication bypass vulnerability in the coordinator user-token verification path where the verifyUserToken() function fails to reject payloads containing an admin claim,…

