{"vulnerability": "cve-2026-0740", "sightings": [{"uuid": "20867050-1f95-42aa-b63a-50f9030deebd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/wordfenceofficial.bsky.social/post/3mitrjp4tp22q", "content": "", "creation_timestamp": "2026-04-06T17:19:46.940705Z"}, {"uuid": "28e7dc84-6a5d-497e-98b2-d0f63f5900a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/mysites.guru/post/3mivpheuhrn2q", "content": "", "creation_timestamp": "2026-04-07T11:47:57.506463Z"}, {"uuid": "ae1a9a05-a406-4ea8-a151-8d67894c7171", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/81668", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-0740\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a murrez\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-25 23:14:56\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-0740\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-26T00:00:04.000000Z"}, {"uuid": "ff105b58-3ab2-499d-83f8-8e7081d3151b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mix22tsqq327", "content": "", "creation_timestamp": "2026-04-08T00:30:31.411297Z"}, {"uuid": "32b390c9-6d8b-4ee2-ae90-196492fab415", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3miuzmkuxzz2r", "content": "", "creation_timestamp": "2026-04-07T05:17:09.572568Z"}, {"uuid": "148ccfad-bd38-4570-9a66-7436ee2a407b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-0740", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116361778335158064", "content": "", "creation_timestamp": "2026-04-07T05:30:31.359765Z"}, {"uuid": "5c6572ee-1b8e-480c-80e8-12555f61fc79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-0740", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3miv2ejndkt27", "content": "", "creation_timestamp": "2026-04-07T05:30:33.352433Z"}, {"uuid": "997e14dd-d6d2-4e41-8ff9-c7382fe9414d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3miv5y6suex27", "content": "", "creation_timestamp": "2026-04-07T06:35:26.134484Z"}, {"uuid": "e5f6f39b-271b-4fb1-a1bd-d46697934c5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "published-proof-of-concept", "source": "https://t.me/codeby_sec/9988", "content": "\u041e\u0434\u0438\u043d POST-\u0437\u0430\u043f\u0440\u043e\u0441 \u2014 \u0438 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u043b\u0435\u0436\u0438\u0442 PHP-\u0448\u0435\u043b\u043b\n\n\u0411\u0435\u0437 \u043b\u043e\u0433\u0438\u043d\u0430. \u0411\u0435\u0437 \u043f\u0430\u0440\u043e\u043b\u044f. CVE-2026-0740 \u0432 Ninja Forms \u2014 File Uploads: CVSS 9.8, PR:N, UI:N.\n\n\ud83d\udd0d \u0427\u0442\u043e \u0441\u043b\u043e\u043c\u0430\u043d\u043e: \u0444\u0443\u043d\u043a\u0446\u0438\u044f handle_upload \u043d\u0435 \u0432\u0430\u043b\u0438\u0434\u0438\u0440\u0443\u0435\u0442 \u0442\u0438\u043f \u0444\u0430\u0439\u043b\u0430. \u0410\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u0448\u043b\u0451\u0442 POST \u043d\u0430 admin-ajax.php \u2014 \u0438 .php-\u0444\u0430\u0439\u043b \u043e\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u0432 wp-content/uploads/. \u041a\u043b\u0430\u0441\u0441\u0438\u0447\u0435\u0441\u043a\u0438\u0439 CWE-434.\n\n\u26a0\ufe0f \u041e\u0442\u0434\u0435\u043b\u044c\u043d\u044b\u0439 \u0440\u0438\u0441\u043a \u2014 \u043f\u0440\u0435\u043c\u0438\u0443\u043c-\u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0435: \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0435 \u0438\u0434\u0443\u0442 \u0447\u0435\u0440\u0435\u0437 WordPress.org, \u043d\u0443\u0436\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u044f\u0442\u044c\u0441\u044f \u0432\u0440\u0443\u0447\u043d\u0443\u044e. \u041f\u0430\u0442\u0447 (\u0432\u0435\u0440\u0441\u0438\u044f 3.3.27) \u0432\u044b\u0448\u0435\u043b 19 \u043c\u0430\u0440\u0442\u0430 2026-\u0433\u043e, CVE \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 7 \u0430\u043f\u0440\u0435\u043b\u044f \u2014 \u0442\u0440\u0438 \u043d\u0435\u0434\u0435\u043b\u0438 \u0444\u043e\u0440\u044b \u0434\u043b\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0445.\n\n\u0412 \u0441\u0442\u0430\u0442\u044c\u0435 \u2014 \u0440\u0430\u0437\u0431\u043e\u0440 kill chain \u043f\u043e MITRE ATT\\&amp;CK: \u043e\u0442 \u0440\u0430\u0437\u0432\u0435\u0434\u043a\u0438 \u0447\u0435\u0440\u0435\u0437 WPScan \u0434\u043e \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u044f DB-credentials \u0438\u0437 wp-config.php, \u043f\u043b\u044e\u0441 detection-\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0438 \u043f\u0430\u0442\u0447-\u0434\u0438\u0444\u0444.\n\nhttps://codeby.net/threads/uyazvimost-ninja-forms-rce-cve-2026-0740-polnyi-razbor-ekspluatatsii-i-zashchity-wordpress.92676/", "creation_timestamp": "2026-04-17T05:02:09.000000Z"}, {"uuid": "3b3a6462-8518-4259-a7fd-ce5e2a2a83b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3miz6wtzjyj2y", "content": "", "creation_timestamp": "2026-04-08T21:03:04.653208Z"}, {"uuid": "e899b99f-3623-464e-a05d-41cbd3f4111f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/mysites.guru/post/3mj5ig6fwrv2x", "content": "", "creation_timestamp": "2026-04-10T14:03:18.680306Z"}, {"uuid": "5fa6b707-30da-46ba-9ddd-8d34a90e8a02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/mysites.guru/post/3mj2xzbopvh26", "content": "", "creation_timestamp": "2026-04-09T14:04:26.524289Z"}, {"uuid": "f25509da-133d-46db-97ba-955f5a3cda71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mj3zd2biqt27", "content": "", "creation_timestamp": "2026-04-10T00:00:27.945554Z"}, {"uuid": "d2372bcc-9a99-4774-9e20-2ab35bdc75b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/mysites.guru/post/3mj5r3c3eym2x", "content": "", "creation_timestamp": "2026-04-10T16:38:16.919063Z"}, {"uuid": "eb4383bf-933f-4095-8d05-b3a7fcf2fb51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/mysites.guru/post/3mjhkafkddp2f", "content": "", "creation_timestamp": "2026-04-14T14:02:29.628010Z"}, {"uuid": "bd872da4-5cae-40c2-bad0-a0fe9073d0b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://www.acn.gov.it/portale/w/wordpress-rilevato-sfruttamento-della-cve-2026-0740-nel-plugin-ninja-forms", "content": "", "creation_timestamp": "2026-04-13T05:34:04.000000Z"}, {"uuid": "0959ca05-f356-4171-81c2-9758145a88c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/mysites.guru/post/3mjhkbytrsl2q", "content": "", "creation_timestamp": "2026-04-14T14:03:23.248050Z"}, {"uuid": "e91a5f73-dc4b-44a5-8e98-e842a69c2f7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "published-proof-of-concept", "source": "Telegram/-3DL24OhrtcIgo9QG72TD8xQtaEdTWVMF9bFoz5wsaSPnZU", "content": "", "creation_timestamp": "2026-04-08T19:00:26.000000Z"}, {"uuid": "142fe34e-70ba-4b09-bcda-8577199dce49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://bsky.app/profile/wordfenceofficial.bsky.social/post/3mjndlief222t", "content": "", "creation_timestamp": "2026-04-16T21:19:35.151242Z"}, {"uuid": "46d40753-08f4-48e0-b91a-09faf93e1628", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "exploited", "source": "https://t.me/true_secator/8079", "content": "Defiant \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u0435\u0442 \u043e \u043d\u0430\u0447\u0430\u043b\u0435 \u043c\u0430\u0441\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0430\u0442\u0430\u043a, \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u043f\u043b\u0430\u0442\u043d\u043e\u043c \u0434\u043e\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0438 Ninja Forms File Uploads \u0434\u043b\u044f WordPress, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u0447\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438, \u0435\u0435 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u044d\u043a\u0440\u0430\u043d Wordfence \u0437\u0430\u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0430\u043b \u0431\u043e\u043b\u0435\u0435 3600\u00a0\u0430\u0442\u0430\u043a \u043d\u0430 CVE-2026-0740 \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 24 \u0447\u0430\u0441\u0430.\n\nNinja Forms - \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0439 \u043a\u043e\u043d\u0441\u0442\u0440\u0443\u043a\u0442\u043e\u0440 \u0444\u043e\u0440\u043c \u0434\u043b\u044f WordPress \u0441 \u0431\u043e\u043b\u0435\u0435 \u0447\u0435\u043c 600 \u0442\u044b\u0441. \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0430\u043c\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u0441\u043e\u0437\u0434\u0430\u0432\u0430\u0442\u044c \u0444\u043e\u0440\u043c\u044b \u0431\u0435\u0437 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043f\u0440\u043e\u0441\u0442\u043e\u0439 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u043f\u0435\u0440\u0435\u0442\u0430\u0441\u043a\u0438\u0432\u0430\u043d\u0438\u044f. \u0420\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 \u0432 \u0442\u043e\u043c \u0436\u0435 \u043f\u0430\u043a\u0435\u0442\u0435, \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u0435\u0442 \u0431\u043e\u043b\u0435\u0435 90 \u0442\u044b\u0441. \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432.\n\nCVE-2026-0740 \u0438\u043c\u0435\u0435\u0442 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u043e\u0446\u0435\u043d\u043a\u0443 CVSS 9,8 \u0438\u0437 10 \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 Ninja Forms File Upload \u0434\u043e 3.3.26 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Wordfence, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435\u043c \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0442\u0438\u043f\u043e\u0432/\u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0439 \u0444\u0430\u0439\u043b\u043e\u0432 \u0432 \u0446\u0435\u043b\u0435\u0432\u043e\u043c \u0438\u043c\u0435\u043d\u0438 \u0444\u0430\u0439\u043b\u0430, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b, \u0432\u043a\u043b\u044e\u0447\u0430\u044f PHP-\u0441\u043a\u0440\u0438\u043f\u0442\u044b, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0438\u043c\u0435\u043d\u0430\u043c\u0438 \u0444\u0430\u0439\u043b\u043e\u0432 \u0434\u043b\u044f \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u0435\u043d\u0438\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0443\u0442\u0438.\n\n\u0412 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438 \u0444\u0443\u043d\u043a\u0446\u0438\u044f \u043d\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442 \u0432 \u0441\u0435\u0431\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u0442\u0438\u043f\u0430 \u0444\u0430\u0439\u043b\u0430 \u0438\u043b\u0438 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u044f \u0438\u043c\u0435\u043d\u0438 \u0446\u0435\u043b\u0435\u0432\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430 \u043f\u0435\u0440\u0435\u0434 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0435\u0439 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u044f, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b, \u043d\u043e \u0438 \u0444\u0430\u0439\u043b\u044b \u0441 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0435\u043c .php.\n\n\u041f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0438\u043c\u0435\u043d \u0444\u0430\u0439\u043b\u043e\u0432 \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f, \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440 \u0442\u0430\u043a\u0436\u0435 \u043e\u0431\u043b\u0435\u0433\u0447\u0430\u0435\u0442 \u043e\u0431\u0445\u043e\u0434 \u043f\u0443\u0442\u0435\u0439, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044f \u043f\u0435\u0440\u0435\u043c\u0435\u0441\u0442\u0438\u0442\u044c \u0444\u0430\u0439\u043b \u0434\u0430\u0436\u0435 \u0432 \u043a\u043e\u0440\u043d\u0435\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0430.\n\n\u0412\u0441\u0435 \u044d\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 PHP-\u043a\u043e\u0434, \u0430 \u0437\u0430\u0442\u0435\u043c \u043f\u043e\u043b\u0443\u0447\u0430\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0444\u0430\u0439\u043b\u0443 \u0434\u043b\u044f \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435.\n\n\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u043a\u0430\u0442\u0430\u0441\u0442\u0440\u043e\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u043c\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u0435 \u0432\u0435\u0431-\u043e\u0431\u043e\u043b\u043e\u0447\u0435\u043a \u0438 \u043f\u043e\u043b\u043d\u044b\u0439 \u0437\u0430\u0445\u0432\u0430\u0442 \u0441\u0430\u0439\u0442\u0430.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c \u0421\u0435\u043b\u0438\u043c\u043e\u043c \u041b\u0430\u043d\u0443\u0430\u0440\u043e\u043c (whattheslime), \u043a\u043e\u0442\u043e\u0440\u044b\u0439 8 \u044f\u043d\u0432\u0430\u0440\u044f \u043e\u0442\u043f\u0440\u0430\u0432\u0438\u043b \u043f\u043e \u043d\u0435\u0439 \u043e\u0442\u0447\u0435\u0442 \u0432 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0443 \u0432\u043e\u0437\u043d\u0430\u0433\u0440\u0430\u0436\u0434\u0435\u043d\u0438\u044f \u0437\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043e\u043a Wordfence.\n\n\u041f\u043e\u0441\u043b\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 Wordfence \u0432 \u0442\u043e\u0442 \u0436\u0435 \u0434\u0435\u043d\u044c \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u0438\u043b\u0430 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0443 \u043f\u043e\u043b\u043d\u0443\u044e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u0438 \u0432\u043d\u0435\u0434\u0440\u0438\u043b\u0430 \u0432\u0440\u0435\u043c\u0435\u043d\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u0437\u0430\u0449\u0438\u0442\u044b \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043f\u0440\u0430\u0432\u0438\u043b \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u0430 \u0434\u043b\u044f \u0441\u0432\u043e\u0438\u0445 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432.\n\n\u041f\u043e\u0441\u043b\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u043f\u0430\u0442\u0447\u0435\u0439 \u0438 \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u043e\u0433\u043e \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f 10 \u0444\u0435\u0432\u0440\u0430\u043b\u044f, \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b \u043f\u043e\u043b\u043d\u043e\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0432 \u0432\u0435\u0440\u0441\u0438\u0438 3.3.27, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0439 \u0441 19 \u043c\u0430\u0440\u0442\u0430.\n\n\u0423\u0447\u0438\u0442\u044b\u0432\u0430\u044f, \u0447\u0442\u043e Wordfence \u0442\u0435\u043f\u0435\u0440\u044c \u0435\u0436\u0435\u0434\u043d\u0435\u0432\u043d\u043e \u0444\u0438\u043a\u0441\u0438\u0440\u0443\u0435\u0442 \u0442\u044b\u0441\u044f\u0447\u0438 \u043f\u043e\u043f\u044b\u0442\u043e\u043a \u0432\u0437\u043b\u043e\u043c\u0430, \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c Ninja Forms File Upload \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c\u0441\u044f \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438.", "creation_timestamp": "2026-04-08T15:49:34.000000Z"}, {"uuid": "80035ceb-b18b-473e-99cf-92fa1e0a81e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "published-proof-of-concept", "source": "Telegram/kFmk3IZ3Z2qzEI0aWgGpXK0TflqqE9Sd4_8Q2OIAfUn3vfM", "content": "", "creation_timestamp": "2026-04-17T07:00:12.000000Z"}, {"uuid": "16a78d17-dc00-42b2-851e-522a5bcd54a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "Telegram/PccILqNbDdjDYDrDdIeHFnNV8hFt7Dml8Dmmd7IXINWTSDI", "content": "", "creation_timestamp": "2026-04-07T07:15:32.000000Z"}, {"uuid": "0dbaea5b-e9b9-445e-9ae5-4bb073dec9f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "published-proof-of-concept", "source": "Telegram/jQQxeN2mPQPtfMYo_To2hQ-_smSd26JApgUtHwY05JTWW84", "content": "", "creation_timestamp": "2026-04-08T21:00:04.000000Z"}, {"uuid": "8881c87d-79f9-4cd7-9ba5-8c65b7200213", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "published-proof-of-concept", "source": "Telegram/bj8doEkkdNqHpfVQfl8gvA4415dyF2kRdOr9jMxstG-0IPA", "content": "", "creation_timestamp": "2026-04-17T15:00:06.000000Z"}, {"uuid": "1c2ccf48-55a5-4a32-a356-befe76f6fe95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "published-proof-of-concept", "source": "Telegram/kld9yLBbS6fzFNytGTSDXwsTRi8Qoep-LDw8M-oA9J472Qs", "content": "", "creation_timestamp": "2026-04-26T03:00:05.000000Z"}, {"uuid": "599b04df-198e-4f10-9bae-564f285210ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "https://t.me/GithubRedTeam/83819", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-0740\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a zycoder0day\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-11 14:49:27\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\n\u65e0\u63cf\u8ff0\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-11T15:00:05.000000Z"}, {"uuid": "0e4a7b73-c4a6-4287-a408-741e63922fec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-0740", "type": "seen", "source": "Telegram/APNnc0rGq8Mw668T50hT40wcIodfx4a7aX3kwnmD3UBVDH4", "content": "", "creation_timestamp": "2026-05-11T15:00:15.000000Z"}]}