https://invaders.ie/resources/blog/vulnerability/unfixed-gogs-flaw-can-turn-pull-requests-into-server-side-rce Invaders Security en 2026-06-02T08:09:14.454Z Unfixed Gogs flaw can turn pull requests into server-side RCE Gogs authenticated RCE, Gogs argument injection, Rapid7 Gogs rebase vulnerability, self-hosted Git server security, Gogs no patch https://invaders.ie/resources/blog/vulnerability/palo-alto-globalprotect-auth-bypass-turns-cookie-trust-into-vpn-access-risk Invaders Security en 2026-06-01T08:07:26.153Z Palo Alto GlobalProtect auth bypass turns cookie trust into VPN access risk CVE-2026-0257, PAN-OS GlobalProtect authentication bypass, Palo Alto VPN cookie vulnerability, Rapid7 GlobalProtect exploitation, GlobalProtect authentication override cookies