ctipilot.ch

Progress Sitefinity CMS — CWE-522 Insufficiently Protected Credentials (Sitefinity Insight credential disclosure, gated on Insight integration/non-default config); CVSS 10.0 per NVD; BSI WID-SEC-2026-1783; evaluated 2026-06-04, dropped to §7 (no fetchable vendor primary, no ITW)

cve · CVE-2026-7312

Coverage timeline
1
first 2026-06-04 → last 2026-06-04
Briefs
1
1 distinct
Sources cited
26
20 hosts
Sections touched
0
Co-occurring entities
0
no co-occurrence

Story timeline

  1. 2026-06-04CTI Daily Brief — 2026-06-04

Source distribution

  • attack.mitre.org4 (15%)
  • bleepingcomputer.com2 (8%)
  • cert.ssi.gouv.fr2 (8%)
  • nvd.nist.gov2 (8%)
  • blog.talosintelligence.com1 (4%)
  • cisa.gov1 (4%)
  • dragos.com1 (4%)
  • elastic.co1 (4%)
  • other12 (46%)

External references

NVD · cve.org · CISA KEV

All cited sources (26)

Items in briefs about Progress Sitefinity CMS — CWE-522 Insufficiently Protected Credentials (Sitefinity Insight credential disclosure, gated on Insight integration/non-default config); CVSS 10.0 per NVD; BSI WID-SEC-2026-1783; evaluated 2026-06-04, dropped to §7 (no fetchable vendor primary, no ITW)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.