A critical pre-authentication SQL injection vulnerability, tracked as CVE-2026-42208, has been discovered in the widely used LiteLLM gateway, exposing sensitive backend databases to unauthorized access. Security researchers have confirmed that threat actors are already actively exploiting this flaw to steal high-value secrets, including API keys and provider credentials. Overview of the Vulnerability LiteLLM is an […] The post Critical LiteLLM SQL Injection Vulnerability Exploited in the Wild appeared first on Cyber Security News.