
LiteLLM Exploited 36 Hours After Vulnerability Disclosure
Attackers hit CVE-2026-42208, a critical pre-auth SQL injection in LiteLLM proxy, within 36 hours of the public advisory - targeting database tables holding API keys for every upstream AI provider.










