1. Critical Credential Exposure Risk Detected in Admin API Endpoint
A critical security flaw has been identified in the administrative API infrastructure where sensitive authentication credentials were being transmitted in plaintext API responses. The vulnerability, documented as issue #3246, affected the admin dashboard endpoint in src/routes/admin.js and exposed both Stripe API keys ...