{"uuid": "f658123b-c28a-45a0-b722-6749a70f5881", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49049", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mqbr2xluki25", "content": "\ud83d\udd34 EXPLOITED\n\nA botnet is defacing Joomla sites through the Helix3 template framework, no login needed (CVE-2026-49049).\n\nIt hides in your database, so a file scan calls the site clean.\n\nFix: update both Helix3 plugins to 3.1.2, then check your template settings.", "creation_timestamp": "2026-07-10T08:45:06.894455Z"}