{"uuid": "28a3d54f-f20b-4517-9d5d-14cce5571727", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29014", "type": "seen", "source": "https://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.html", "content": "Threat actors are actively exploiting a critical security flaw impacting an open-source content management system (CMS) known as MetInfo, according to new findings from VulnCheck.\nThe vulnerability in question is CVE-2026-29014 (CVSS score: 9.8), a code injection flaw that could result in arbitrary code execution.\n\"MetInfo CMS versions 7.9, 8.0, and 8.1 contain an unauthenticated PHP code", "creation_timestamp": "2026-05-05T09:56:00.000000Z"}