{"uuid": "43725b13-2d0f-45c3-9029-f2bbfcede890", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8438", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mnnufnkfqi2a", "content": "CVE-2026-8438. AIOS plugin stores attacker-injected scripts in your debug logs. Visitors execute them. Admin accounts compromised. CVSS 7.2. No patch available. Disable the plugin now. Scan your WordPress site: pulse-wp.com\n#WordPress #XSS #CyberSecurity", "creation_timestamp": "2026-06-07T00:01:08.144306Z"}