---
title: "CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV — Stuff That Spins"
description: "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, cit…"
	canonical: "https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev"
html: "https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev"
json: "https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev.json"
markdown: "https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev.md"
keywords: ["narrative intelligence", "SpinGraph", "AI recall"]
date: "2026-07-08T05:33:12+00:00"
modified: "2026-07-08T12:01:51.592391+00:00"
json_ld: |
  {"@context":"https://schema.org","@graph":[{"@type":"Organization","@id":"https://stuffthatspins.com/#organization","name":"Stuff That Spins","url":"https://stuffthatspins.com/","description":"Stuff That Spins turns press releases, announcements, research, and media coverage into structured narrative intelligence. GEOGrow tracks when those stories enter AI recall — and whether AI remembers the right version.","logo":{"@type":"ImageObject","url":"https://stuffthatspins.com/images/logo.png"},"sameAs":[]},{"@type":"NewsArticle","@id":"https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev#article","headline":"CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV","description":"The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, cit…","datePublished":"2026-07-08T05:33:12+00:00","dateModified":"2026-07-08T12:01:51.592391+00:00","url":"https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev","mainEntityOfPage":{"@type":"WebPage","@id":"https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev"},"isAccessibleForFree":true,"inLanguage":"en-US","articleSection":"cybersecurity","author":{"@type":"Organization","name":"The Hacker News","url":"https://feeds.feedburner.com/TheHackersNews"},"publisher":{"@id":"https://stuffthatspins.com/#organization"},"citation":"https://thehackernews.com/2026/07/cisa-adds-4-actively-exploited-adobe.html","about":[],"mentions":[{"@type":"Organization","name":"The Hacker News"}]},{"@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Stuff That Spins","item":"https://stuffthatspins.com/"},{"@type":"ListItem","position":2,"name":"CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV","item":"https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev"}]}]}
---

# CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV

**Source:** Unknown  
**Published:** July 8, 2026  
**Original:** https://thehackernews.com/2026/07/cisa-adds-4-actively-exploited-adobe.html  

## On this page

- [Overview](#overview)

<a id="overview"></a>

## Overview

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities are listed below - CVE-2026-48282 (CVSS score: 10.0) - A path traversal vulnerability in Adobe ColdFusion that could lead to arbitrary code execution in the context of the

---
*HTML version: https://stuffthatspins.com/spin/cisa-adds-4-actively-exploited-adobe-joomla-and-langflow-flaws-to-kev*
