2 matches found
CVE-2026-27938
creationtimestamp| type| source ---|---|--- 2026-02-26 05:39:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfqiab7qyg2h...
CVE-2026-27938
WPGraphQL provides a GraphQL API for WordPress sites. Prior to version 2.9.1, the wp-graphql/wp-graphql repository contains a GitHub Actions workflow release.yml vulnerable to OS command injection through direct use of $ github.event.pullrequest.body inside a run: shell block. When a pull request...