Security
HTTP/2 Bomb DoS Vulnerability: CVE-2026-49975
Posted: June 3, 2026 Category: Security Advisory Severity: High for public HTTP/2 endpoints Reliable Penguin is aware of public reports regarding CVE-2026-49975, also referred to as the HTTP/2 Bomb vulnerability. This issue may allow a remote ...
Advanced Custom Fields: Extended WordPress Plugin Vulnerability
Reliable Penguin has reviewed managed WordPress servers for a recently disclosed vulnerability in the Advanced Custom Fields: Extended WordPress plugin, also commonly referred to as ACF Extended or ACFE. Summary Wordfence published an advisory for a ...
Kirki WordPress Plugin Vulnerability
Kirki WordPress Plugin Vulnerability Reliable Penguin has reviewed managed WordPress servers for a recently disclosed vulnerability in the Kirki WordPress plugin. Summary Wordfence published an advisory for a critical unauthenticated privilege ...