1. Vite 7.0.0 Patches Critical Arbitrary File Read Vulnerability in Dev Server WebSocket
A critical security vulnerability has been identified in Vite, a widely adopted JavaScript build tool and development server. The flaw, tracked as CVE-2026-39363 and documented in GitHub Security Advisory GHSA-p9ff-h696-f583, allows an attacker to read arbitrary files on the system through the Vite Dev Server WebSocket...