pycti
python · pyctiHeads-up
pycti (OpenCTI) security advisory: regex bypass in secureIntrospectionPlugin
A security advisory was published for pycti (OpenCTI) regarding a bypass in the regex validation used to prevent Introspection que
23 Jun 2026 · schedule it
python · pyctiCritical
pycti: SSRF vulnerability in data ingestion via unvalidated URLs
OpenCTI's data ingestion accepts user-supplied URLs without validation and uses Axios with default configuration (allowAbsoluteUrl
23 Jun 2026 · act now