Update taxonomy

Author: actions-user

taxonomy/scenarios.json

@@ -4039,6 +4039,28 @@
       "CWE-287"
     ]
   },
+  "crowdsecurity/vpatch-CVE-2026-0926": {
+    "name": "crowdsecurity/vpatch-CVE-2026-0926",
+    "description": "Detects LFI in Prodigy Commerce WordPress plugin via parameters[template_name] in admin-ajax.php",
+    "label": "Prodigy Commerce - LFI",
+    "behaviors": [
+      "http:exploit"
+    ],
+    "mitre_attacks": [
+      "TA0001:T1190"
+    ],
+    "confidence": 3,
+    "spoofable": 0,
+    "cti": true,
+    "service": "http",
+    "created_at": "2026-04-01T15:14:23",
+    "cves": [
+      "CVE-2026-0926"
+    ],
+    "cwes": [
+      "CWE-98"
+    ]
+  },
   "crowdsecurity/vpatch-CVE-2026-1207": {
     "name": "crowdsecurity/vpatch-CVE-2026-1207",
     "description": "Detects SQL injection via the band parameter in Django RasterField/PostGIS endpoint",