Settings

Theme

OpenCode AI coding agent hit by critical unauthenticated RCE vulnerability

github.com

3 points by AlexAltea a month ago · 2 comments

Reader
rvz a month ago

Probably nothing.

  • AlexAlteaOP a month ago

    Probably nothing based on what? I have reproduced the finding locally...

    Any website can trivially run arbitrary code as the current user if OpenCode is installed; that's CVSS ~10.

Keyboard Shortcuts

j
Next item
k
Previous item
o / Enter
Open selected item
?
Show this help
Esc
Close modal / clear selection