{"vulnerability": "CVE-2026-8732", "sightings": [{"uuid": "ab730763-b3bb-4312-8d98-328811f93bbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn4hsvyyos2h", "content": "\ud83d\udd34 CVE-2026-8732 - Critical (9.8)\n\nThe WP Maps Pro plugin for WordPress is vulnerable to Privilege Escalation via Administrator Acco...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-8732/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-31T02:00:39.715857Z"}, {"uuid": "81a1439e-69c7-4bcb-930a-5ad112356e89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8732", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116656690014408313", "content": "\ud83d\udea8 CVE-2026-8732: WP Maps Pro \u22646.1.0 has a CRITICAL flaw (CVSS 9.8). Unauthenticated attackers can create admin accounts via an AJAX action protected only by a public nonce. Full site takeover risk. Disable or remove plugin until patched. https://radar.offseq.com/threat/cve-2026-8732-cwe-306-missing-authentication-for-c-c3324188 #OffSeq #WordPress #Vuln", "creation_timestamp": "2026-05-29T07:30:27.513104Z"}, {"uuid": "93bd559f-71d9-45dd-9f4a-1c3909b5199a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8732", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmxzctdvgd2h", "content": "WP Maps Pro (\u22646.1.0) CRITICAL vulnerability: attackers can create admin accounts &amp; take over sites due to missing auth on AJAX action. Remove or disable plugin until patched! https://radar.offseq.com/threat/cve-2026-8732-cwe-306-missing-authentication-for-c-c3324188 #OffSeq #WordPress #Security", "creation_timestamp": "2026-05-29T07:30:28.213431Z"}, {"uuid": "be12aadb-2663-4ba9-9c4f-99407fa6a386", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://t.me/GithubRedTeam/86528", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #Exploit\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-8732\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a Jenderal92\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-30 11:47:17\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nWP Maps Pro &lt;= 6.1.0 - Unauthenticated Privilege Escalation via Administrator Account Creation to wpgmp_temp_access_ajax AJAX Action\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-30T12:00:04.000000Z"}, {"uuid": "3cf3e6c8-421d-464d-9306-1e09080d0d77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmya5xseuu2a", "content": "CVE-2026-8732 - WP Maps Pro\nCVE ID : CVE-2026-8732\n \n Published : May 29, 2026, 7:16 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : The WP Maps Pro plugin for WordPress is vulnerable to Privilege Escalation via Administrator Account Creation in all versions up to, and includin...", "creation_timestamp": "2026-05-29T09:33:01.087973Z"}, {"uuid": "306b8782-4f8f-4ec4-b6ad-1b07602bd83a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mn62yazvfo2h", "content": "Urgent alert for WordPress users! A critical WP Maps Pro plugin vulnerability (CVE-2026-8732) allows unauthenticated attackers to create admin accounts, leading to full site takeover. Check your sites and update immediately.\n\nhttps://www.tpp.blog/29z541y\n\n#cybersecurity #wpmapspro #wordfence", "creation_timestamp": "2026-05-31T17:16:20.377191Z"}, {"uuid": "091ce27c-96df-46d9-b478-8dd10325957d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/bitnewsbot.bsky.social/post/3mn7tcomcfp2i", "content": "A critical vulnerability (CVE-2026-8732) in the WP Maps Pro WordPress plugin allows attackers to create admin accounts. The flaw affects [\u2026]", "creation_timestamp": "2026-06-01T10:04:18.792131Z"}, {"uuid": "914815c0-0f7f-4fbb-be81-20cb029b081e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mn5vvvc6vw2r", "content": "WordPress sites using WP Maps Pro 6.1.0 and earlier face CVE-2026-8732, where attackers can create rogue admin accounts without auth. Fixed in 6.1.1. #WPMapsPro #WordPress #Defiant", "creation_timestamp": "2026-05-31T15:45:30.974587Z"}, {"uuid": "2d415f01-b6cb-4ebe-b692-49c81a17929f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8732", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mn6y53m7s72o", "content": "\ud83d\udcf0 Sektor WordPress Terancam: Celah Kritis WP Maps Pro Dieksploitasi untuk Membuat Akun Admin Siluman\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/01/celah-wp-maps-pro-buat-akun-admin-wordpress/\n\n#ajaxWeb #akunAdmin #cve-2026-8732 #defiant #keamananSiber #privilegeEscalation #", "creation_timestamp": "2026-06-01T01:57:59.803936Z"}, {"uuid": "2d24b6b5-a5c9-4e30-89d0-99b1d4dbeee2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mn6zyh5flz2u", "content": "Top 3 CVE for last 7 days:\nCVE-2026-0257: 28 interactions\nCVE-2026-48778: 21 interactions\nCVE-2026-48095: 19 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-48778: 20 interactions\nCVE-2026-0257: 11 interactions\nCVE-2026-8732: 3 interactions\n", "creation_timestamp": "2026-06-01T02:31:12.307438Z"}, {"uuid": "817740da-6a29-4378-bdf2-96f8194887fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://t.me/GithubRedTeam/86792", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #POC #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-8732-POC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a p3Nt3st3r-sTAr\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-01 09:06:47\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\n\u65e0\u63cf\u8ff0\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-01T09:07:01.000000Z"}, {"uuid": "4ad30ba8-286a-4898-9baa-3eb18522bc1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mnaajedqmz22", "content": "CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password Tracked as **CVE-2026-8732**.\nCVE-2026-8732: The WP M\n\n- CVE-2026-8732 in WP Maps Pro lets unauthenticated attackers create WordPress a\n\nhttps://securitycyber.uk\n\n\n\nTraining: https://www.hackthebox.com h", "creation_timestamp": "2026-06-01T14:00:41.433476Z"}, {"uuid": "b8ecebc8-258b-435e-8b42-67341f747e30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mna3y7drxy27", "content": "CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password", "creation_timestamp": "2026-06-01T12:40:08.683824Z"}, {"uuid": "38cfb328-806e-4b1a-8fd1-c465ce82f64b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mna44xt4ipb2", "content": "CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password CVE-2026-8732 in WP Maps Pro lets unauthenticated attackers create WordPress admin accounts. 2,858 a...\n\n#Breaking #News #Hacking #Security #Cybercrime [\u2026] \n\n[Original post on securityaffairs.com]", "creation_timestamp": "2026-06-01T12:42:12.354173Z"}, {"uuid": "b5417cbd-370c-4081-9355-fd65593330ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "Telegram/6aRmkHLTBo3GKPk_n1HOA3fAOL27wkJp7z3hwqGNdIQXL6Za", "content": "", "creation_timestamp": "2026-06-01T12:30:05.000000Z"}, {"uuid": "3a6512bb-8392-47d5-ab97-500cfb88fd7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://t.me/ctinow/251096", "content": "CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password\nhttps://ift.tt/sreOGjn", "creation_timestamp": "2026-06-01T12:19:40.000000Z"}, {"uuid": "8d0678e5-a388-4814-92cb-d8c050bbc0ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/empist.bsky.social/post/3mnaj6ucvmk2i", "content": "CVE-2026-8732 in WP Maps Pro is being actively exploited \u2014 2,858 attacks in 24 hours.\n\nAttackers are creating admin accounts on unpatched WordPress sites. Update or disable the plugin now. #WordPress #Cybersecurity snip.ly/cwy2ra", "creation_timestamp": "2026-06-01T16:35:54.908112Z"}, {"uuid": "27a2d4c7-24a5-43ad-9c45-3d9c6363600b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mnapt7ekue2w", "content": "Unauthenticated attackers exploit CVE-2026-8732 in WP Maps Pro to create administrator accounts and gain full site control via a weak nonce-protected AJAX endpoint.\n", "creation_timestamp": "2026-06-01T18:34:38.440020Z"}, {"uuid": "983d6be8-893d-4874-bdec-2f3e9379c21d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://t.me/true_secator/8267", "content": "\u041a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435 \u0432\u0437\u044f\u043b\u043e\u0441\u044c \u0437\u0430 \u0441\u0430\u0439\u0442\u044b WordPress \u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0435\u0439 \u043f\u043b\u0430\u0433\u0438\u043d\u0430 WP Maps Pro, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0441\u043e\u0437\u0434\u0430\u0432\u0430\u0442\u044c \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0437\u0430\u043f\u0438\u0441\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\nCVE-2026-8732 \u0438\u043c\u0435\u0435\u0442 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438 \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0435\u0440\u0441\u0438\u0438 WP Maps Pro 6.1.0 \u0438 \u0431\u043e\u043b\u0435\u0435 \u0440\u0430\u043d\u043d\u0438\u0435, \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0438 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c \u0414\u044d\u0432\u0438\u0434\u043e\u043c \u0411\u0440\u0430\u0443\u043d\u043e\u043c.\n\nWP Maps Pro - \u044d\u0442\u043e \u043f\u0440\u0435\u043c\u0438\u0430\u043b\u044c\u043d\u044b\u0439 \u043f\u043b\u0430\u0433\u0438\u043d \u0434\u043b\u044f WordPress, \u043f\u0440\u0435\u0434\u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u043d\u044b\u0439 \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0438\u043d\u0442\u0435\u0440\u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445, \u043d\u0430\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u0435\u043c\u044b\u0445 \u043a\u0430\u0440\u0442 \u0438 \u043b\u043e\u043a\u0430\u0446\u0438\u0439 \u043c\u0430\u0433\u0430\u0437\u0438\u043d\u043e\u0432, \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u0442 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432 \u043a\u0430\u0440\u0442, \u0442\u0430\u043a\u0438\u0445 \u043a\u0430\u043a Google Maps \u0438 OpenStreetMap.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u0444\u0443\u043d\u043a\u0446\u0438\u0435\u0439 \u00ab\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430\u00bb \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435, \u043f\u0440\u0435\u0434\u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u043d\u043e\u0439 \u0434\u043b\u044f \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043e\u0442\u0440\u0443\u0434\u043d\u0438\u043a\u0430\u043c \u0441\u043b\u0443\u0436\u0431\u044b \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0438 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0430 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0441\u0430\u0439\u0442\u0430\u043c \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u043d\u0435\u043f\u043e\u043b\u0430\u0434\u043e\u043a.\n\n\u0411\u0440\u0430\u0443\u043d \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b, \u0447\u0442\u043e AJAX-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0439 \u0434\u043b\u044f \u044d\u0442\u043e\u0439 \u0444\u0443\u043d\u043a\u0446\u0438\u0438, \u0431\u044b\u043b \u0434\u043e\u0441\u0442\u0443\u043f\u0435\u043d \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u0438 \u043f\u043e\u043b\u0430\u0433\u0430\u043b\u0441\u044f \u0438\u0441\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043d\u0430 \u043e\u0431\u0449\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u0443\u044e \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 nonce \u0432\u043e \u0444\u0440\u043e\u043d\u0442\u0435\u043d\u0434-JavaScript, \u0447\u0442\u043e \u0434\u0435\u043b\u0430\u043b\u043e \u0437\u0430\u0449\u0438\u0442\u0443 \u043d\u0435\u044d\u0444\u0444\u0435\u043a\u0442\u0438\u0432\u043d\u043e\u0439.\n\n\u042d\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0437\u0430\u043f\u0440\u043e\u0441, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u0442 \u043a\u043e\u0434 \u0434\u043b\u044f \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u043d\u043e\u0432\u043e\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f WordPress, \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u044f \u0435\u043c\u0443 \u0440\u043e\u043b\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0438 URL-\u0430\u0434\u0440\u0435\u0441\u0430 \u0434\u043b\u044f \u0432\u0445\u043e\u0434\u0430 \u0431\u0435\u0437 \u043f\u0430\u0440\u043e\u043b\u044f \u0438 \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0435\u0433\u043e \u043d\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443.\n\n\u041f\u043e\u0441\u043b\u0435 \u043f\u0435\u0440\u0435\u0445\u043e\u0434\u0430 \u043f\u043e \u044d\u0442\u043e\u043c\u0443 URL-\u0430\u0434\u0440\u0435\u0441\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0439 \u0443\u0447\u0435\u0442\u043d\u043e\u0439 \u0437\u0430\u043f\u0438\u0441\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u0431\u0435\u0437 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u0432\u043e\u0434\u0430 \u043f\u0430\u0440\u043e\u043b\u044f \u0438\u043b\u0438 \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u0434\u0440\u0443\u0433\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Defiant \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043f\u044b\u0442\u0430\u044e\u0442\u0441\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c. \u0422\u043e\u043b\u044c\u043a\u043e \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 24 \u0447\u0430\u0441\u0430 \u0437\u0430\u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 3600 \u043f\u043e\u043f\u044b\u0442\u043e\u043a.\n\n\u041a\u0430\u043a \u043f\u043e\u044f\u0441\u043d\u0438\u043b\u0438  \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438, \u043a\u043e\u0433\u0434\u0430 \u0437\u0430\u043f\u0440\u043e\u0441 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442\u0441\u044f \u0441 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u043e\u043c check_temp, \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u043c \u0432 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435 false, \u0444\u0443\u043d\u043a\u0446\u0438\u044f \u0441\u043e\u0437\u0434\u0430\u0435\u0442 \u043d\u043e\u0432\u043e\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f WordPress \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e wp_insert_user() \u0441 \u0436\u0435\u0441\u0442\u043a\u043e \u0437\u0430\u0434\u0430\u043d\u043d\u043e\u0439 \u0440\u043e\u043b\u044c\u044e \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430, \u0441\u043b\u0443\u0447\u0430\u0439\u043d\u043e \u0441\u0433\u0435\u043d\u0435\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0438\u043c\u0435\u043d\u0435\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0438 \u0436\u0435\u0441\u0442\u043a\u043e \u0437\u0430\u0434\u0430\u043d\u043d\u044b\u043c \u0430\u0434\u0440\u0435\u0441\u043e\u043c \u044d\u043b\u0435\u043a\u0442\u0440\u043e\u043d\u043d\u043e\u0439 \u043f\u043e\u0447\u0442\u044b support@flippercode.com.\n\n\u0417\u0430\u0442\u0435\u043c \u0444\u0443\u043d\u043a\u0446\u0438\u044f \u0433\u0435\u043d\u0435\u0440\u0438\u0440\u0443\u0435\u0442 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0439 URL-\u0430\u0434\u0440\u0435\u0441 \u0434\u043b\u044f \u0432\u0445\u043e\u0434\u0430 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0444\u0443\u043d\u043a\u0446\u0438\u0438 generate_login_link(), \u0441\u043e\u0445\u0440\u0430\u043d\u044f\u0435\u0442 \u0435\u0433\u043e \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043c\u0435\u0442\u0430\u0434\u0430\u043d\u043d\u044b\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0438 \u0432\u043e\u0437\u0432\u0440\u0430\u0449\u0430\u0435\u0442 \u0432 \u0442\u0435\u043b\u0435 \u043e\u0442\u0432\u0435\u0442\u0430\u00bb.\n\n\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u043f\u0440\u0430\u0432 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u043d\u0430 \u0441\u0430\u0439\u0442\u0435 \u043e\u0437\u043d\u0430\u0447\u0430\u0435\u0442, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0432\u043d\u0435\u0434\u0440\u044f\u0442\u044c \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u044b\u0435 \u0431\u044d\u043a\u0434\u043e\u0440\u044b, \u0438\u0437\u043c\u0435\u043d\u044f\u0442\u044c \u043a\u043e\u043d\u0442\u0435\u043d\u0442, \u043f\u043e\u043b\u0443\u0447\u0430\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c, \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u0442\u044c \u0432\u0435\u0431-\u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0438, \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u043f\u043b\u0430\u0433\u0438\u043d\u044b \u0438 \u0437\u0430\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u0442\u044c \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0432\u0435\u0431-\u0441\u0430\u0439\u0442\u043e\u043c.\n\n\u0411\u0440\u0430\u0443\u043d \u0441\u043e\u043e\u0431\u0449\u0438\u043b \u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0435 Wordfence 24 \u043c\u0430\u0440\u0442\u0430, \u0430 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u0431\u044b\u043b \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d 16 \u043c\u0430\u044f \u043f\u043e\u0441\u043b\u0435 \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. 20 \u043c\u0430\u044f \u0431\u044b\u043b \u0432\u044b\u043f\u0443\u0449\u0435\u043d WP Maps Pro 6.1.1 \u0441 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2026-8732.\n\n\u0410\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430\u043c \u0441\u0430\u0439\u0442\u043e\u0432 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0441\u043a\u043e\u0440\u0435\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u043b\u0430\u0433\u0438\u043d\u044b, \u0434\u0430\u0431\u044b \u043d\u0435 \u0441\u0442\u0430\u0442\u044c \u0436\u0435\u0440\u0442\u0432\u0443\u0439 \u043d\u043e\u0432\u043e\u0439 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u043c\u0443\u0434\u0430\u043a\u043e\u0432.", "creation_timestamp": "2026-06-01T18:30:06.000000Z"}, {"uuid": "375925b0-7a05-4c57-849d-525293070fc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8732", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mnauemtmww2m", "content": "WP Maps Pro\u306e\u8106\u5f31\u6027\uff08CVE-2026-8732\uff09\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u653b\u6483\u8005\u304cWordPress\u30b5\u30a4\u30c8\u3092\u4e57\u3063\u53d6\u308a\u3001\u7ba1\u7406\u8005\u30a2\u30ab\u30a6\u30f3\u30c8\u3092\u4f5c\u6210\u53ef\u80fd\u3002", "creation_timestamp": "2026-06-01T19:55:57.112876Z"}]}