
General Information
phpBB Auth Bypass: Update Forums to 3.3.17 Now
Update phpBB forums to 3.3.17 after a critical authentication bypass report, then test login, OAuth, admin access, backups, and forum moderation workflows.

Update phpBB forums to 3.3.17 after a critical authentication bypass report, then test login, OAuth, admin access, backups, and forum moderation workflows.

Patch Drupal SAML SSO Service Provider CVE-2026-5343 by updating to 3.1.4 or newer and reviewing SSO logs, role mapping, and admin accounts.

Patch Burst Statistics CVE-2026-8181, a critical WordPress authentication bypass affecting versions 3.4.0 through 3.4.1.1.

Patch MLflow CVE-2026-2652 by updating to 3.10.0 or newer, restricting exposed MLOps services, and reviewing recent experiment activity.

CVE-2026-41940 is a critical cPanel and WHM authentication bypass. Here is who is exposed, what the impact means, and what server owners should do now.