{"uuid": "28c0a86f-b795-4cc6-bb83-b559fd45974b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42208", "type": "exploited", "source": "https://t.me/cKure/16362", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 \u2757\ufe0f LiteLLM CVE-2026-42208 exploited in ~36 hours.\n\nA pre-auth SQL injection exposed credential tables with LLM and cloud keys\u2014turning a simple flaw into account-level risk.\n\nNo PoC needed; advisory and schema were enough.\n\n\ud83d\udd17 Details \u2192 https://thehackernews.com/2026/04/litellm-cve-2026-42208-sql-injection.html", "creation_timestamp": "2026-04-29T05:42:08.000000Z"}