{"uuid": "59a784fd-c70d-4572-9f1e-de331b76d8bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3018", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mnwnyjxpbx2b", "content": "CVE-2026-3018. Newsletters plugin. SQL injection. No auth needed.\n\nYour database is readable. Credentials exposed. User data gone.\n\nUpdate to 4.13 now.\n\nScan your WordPress site: pulse-wp.com\n#WordPress #SQLi #CyberSecurity", "creation_timestamp": "2026-06-10T12:00:23.102341Z"}