CVE-2026-27796 - Homarr: Unauthenticated Information Disclosure (Integration Metadata Leak)

CVE ID :CVE-2026-27796 Published : March 7, 2026, 6:16 a.m. | 1 hour, 22 minutes ago Description :Homarr is an open-source dashboard. Prior to version 1.54.0, the integration.all tRPC endpoint in Homarr is exposed as a publicProcedure, allowing unauthenticated users to retrieve a complete list of configured integrations. This metadata includes sensitive information such as internal service URLs, integration names, and service types. This issue has been patched in version 1.54.0. Severity: 5.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...