{"uuid": "27bb9312-7bef-42f0-ae99-8556f00d921f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10737", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mnisbxpsiv2l", "content": "CVE-2026-10737. CVSS 7.5. SP Project & Document Manager leaks file metadata and download links to anyone. No auth needed. Your wp-config could be next.\n\nUpdate to 4.71. now. \u2192 pulse-wp.com\n#WordPress #AccessControl #PotatoSecurity", "creation_timestamp": "2026-06-04T23:39:58.520689Z"}