THREATOPS
THREAT OPSThreat News › CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA Adds Three Known Exploited Vulnerabilities to Catalog

medcisa_advisoriesPublished 2026-07-07

<p>CISA has added three new vulnerabilities to its <a href="https://www.cisa.gov/known-exploited-vulnerabilities-catalog">Known Exploited Vulnerabilities (KEV) Catalog</a>, based on evidence of active exploitation.</p> <ul> <li><a href="https://www.cve.org/CVERecord?id=CVE-2026-48908" target="_blank">CVE-2026-48908</a> JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vuln

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://www.cisa.gov/news-events/alerts/2026/07/07/cisa-adds-three-known-exploited-vulnerabilities-catalog