EIP-2026-114680

This exploit leverages a path traversal vulnerability in HACS < 1.10.0 to access sensitive files (e.g., `.storage/auth`) and craft a JWT token for admin account takeover. It retrieves user data and refresh tokens to generate a valid session token.