{"uuid": "647f9f72-3020-4420-8040-b456641d772c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mqcctoyqs52s", "content": "\ud83c\udf0a WP-SHELLSTORM: an exposed server (left open 22 days) revealed a crew backdooring WP/Joomla via 27 known flaws. Breeze plugin CVE-2026-3844 alone hit 45k targets, 17k+ backdoored. Patch plugins.\n\n\ud83d\udd17 https://thehackernews.com/2026/07/exposed-hacker-server-reveals-wp.html", "creation_timestamp": "2026-07-10T14:03:09.829160Z"}