Security News Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure TheHackerNews Daniel Bender 06 Jul 2026 Share CVE-2026-20896 lets reachable Gitea Docker containers trust spoofed X-WEBAUTH-USER headers when reverse proxy auth is enabled.