Pending AI Enrichment

This vulnerability was recently detected via the live feed and has not yet been processed by Precogs AI's context enrichment engine. The data below represents raw telemetric data.

RAW NVD TELEMETRY

CVE-2026-8022

CVSS Base Score
3.1 MEDIUM
Primary Weakness
CWE-352
Published Date
May 6, 2026
Data Source
NVD API

Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted MHTML page. (Chromium security severity: Low)

Related Vulnerabilitiesvia CWE-352

CVE-2026-41434.3 MEDIUM

The Neos Connector for Fakturama plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 0.

CWE-352
CVE-2026-33324.3 MEDIUM

The Xhanch - My Advanced Settings plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.

CWE-352
CVE-2026-33314.3 MEDIUM

The Lobot Slider Administrator plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 0.

CWE-352
CVE-2026-27236.1 MEDIUM

The Post Snippits plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.

CWE-352
CVE-2026-15034.3 MEDIUM

The login_register plugin for WordPress is vulnerable to Cross-Site Request Forgery to Stored Cross-Site Scripting in all versions up to, and including, 1.

CWE-352
CVE-2026-13934.3 MEDIUM

The Add Google Social Profiles to Knowledge Graph Box plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.

CWE-352

Is your system affected?

Precogs AI detects CVE-2026-8022 in compiled binaries, LLMs, and application layers — even without source code access.

Request Deep AnalysisBook a demo