{"uuid": "ac06e1dc-13e9-4218-8271-ac92d0191de4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9148", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mpubgmlrvk2r", "content": "CVE-2026-9148. wpDiscuz up to 7.6.56. Stored XSS via website field. Attacker injects malicious code. Runs on every page load. Steals admin sessions. No patch available. Disable the plugin now.\n\nScan: pulse-wp.com\n#WordPress #XSS #CyberSecurity", "creation_timestamp": "2026-07-05T00:00:40.706883Z"}