Update phpBB forums to 3.3.17 after a critical authentication bypass report, then test login, OAuth, admin access, backups, and forum moderation workflows.
Patch Drupal SAML SSO Service Provider CVE-2026-5343 by updating to 3.1.4 or newer and reviewing SSO logs, role mapping, and admin accounts.
Patch Burst Statistics CVE-2026-8181, a critical WordPress authentication bypass affecting versions 3.4.0 through 3.4.1.1.
Patch MLflow CVE-2026-2652 by updating to 3.10.0 or newer, restricting exposed MLOps services, and reviewing recent experiment activity.
CVE-2026-41940 is a critical cPanel and WHM authentication bypass. Here is who is exposed, what the impact means, and what server owners should do now.
