Broadcom published VMSA-2026-0004 for VMware Cloud Foundation Operations and Aria Operations. Patch fixed versions, review admin roles, and verify management workflows.
CISA added LiteLLM CVE-2026-42271 to KEV on June 8, 2026. Patch AI gateways, restrict exposed proxy access, rotate keys where needed, and verify routes.
CISA added Check Point Security Gateway CVE-2026-50751 to KEV on June 8, 2026. Patch affected VPN gateways, review IKEv1 exposure, audit logs, and verify remote access.
Advanced Custom Fields: Extended CVE-2026-8809 affects versions through 0.9.2.5. Update to 0.9.2.6 or newer, then review WordPress admin users and public user forms.
Kirki CVE-2026-8206 affects versions 6.0.0 through 6.0.6 and is reportedly under active attack. Update to 6.0.7 or newer, then review WordPress admin accounts.
Meta Business Agent is rolling out for WhatsApp Business. Here is the WordPress and WooCommerce checklist for setup, eligibility, handoff rules, privacy, testing, and on-site chat.
WooCommerce 10.9 beta 1 is available now. Test checkout performance, email logging, product editor beta warnings, swatches, variation galleries, and extension compatibility on staging.
Uncanny Automator 7.3.1 adds useful fixes for WordPress automation sites. Update, test recipes, review Uncanny Agent visibility, and verify WooCommerce, forms, and LMS workflows.
Detection ESP32 is a coming-soon noise monitoring node spec for sustained sound-level logging, GPS privacy, calibration, and tamper-evident records.
CISA added PAN-OS CVE-2026-0257 to KEV after limited exploit attempts. Check GlobalProtect authentication override cookies, mitigate, patch, and verify VPN logs.
