SECURITYTHE HACKER NEWS
CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV
CISA added four actively exploited vulnerabilities to its KEV catalog, including a critical path traversal flaw in Adobe ColdFusion (CVE-2026-48282) that could enable arbitrary code execution. The other flaws affect Joomla and Langflow, with all vulnerabilities being actively exploited.
Related Signal
Adjacent reporting
- CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
- CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
- CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software
- Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
- cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now