THREAT OPS › Threat News › CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog
<p>CISA has added three new vulnerabilities to its <a href="https://www.cisa.gov/known-exploited-vulnerabilities-catalog">Known Exploited Vulnerabilities (KEV) Catalog</a>, based on evidence of active exploitation.</p> <ul> <li><a href="https://www.cve.org/CVERecord?id=CVE-2026-48908" target="_blank">CVE-2026-48908</a> JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vuln
MITRE ATT&CK techniques
- VulnerabilitiesT1588.006
Indicators of compromise
- CVE-2026-48908cve
- CVE-2026-55255cve
- CVE-2026-56290cve
- https://www.cve.org/CVERecord?id=CVE-2026-48908url
- https://www.cve.org/CVERecord?id=CVE-2026-55255url
- https://www.cve.org/CVERecord?id=CVE-2026-56290url
- https://cisasurvey.gov1.qualtrics.com/jfe/form/SV_1Zwu52kgK2OYf3wurl