Security News Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers TheHackerNews Daniel Bender 20 Jan 2026 Cloudflare patched an ACME HTTP-01 validation flaw that disabled WAF protections and let unauthorized requests reach origin servers.
