{"uuid": "0d742038-4a23-4282-a38f-361ed774cf51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8206", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mnrvn345pz2g", "content": "A critical vulnerability (CVE-2026-8206) in the Kirki WordPress plugin affects over 500,000 websites, with around 150,000 actively vulnerable. The flaw, with a CVSS score of 9.8, allows unauthenticated attackers to escalate privileges via a flawed password reset mechanism.", "creation_timestamp": "2026-06-08T14:33:51.358147Z"}