Patch [FIX] Tuesday – April 2026 [Double Feature: SQL Another Day + XSS Never Dies], E30
Download MP3This month's Patch Tuesday drops a SQL Server elevation of privilege that hands attackers sysadmin access and an actively exploited SharePoint XSS flaw that requires no authentication.
SQL injection in the database engine. Cross-site scripting. In 2026...?
Ryan and Mat break down how these attacks work, what to watch for, and why these "classic" vulnerability classes refuse to stay dead.
Also covered: 80 Edge and Chromium fixes released this month, and a recurring reminder about Secure Boot certificates you can't afford to ignore this year.
SQL injection in the database engine. Cross-site scripting. In 2026...?
Ryan and Mat break down how these attacks work, what to watch for, and why these "classic" vulnerability classes refuse to stay dead.
Also covered: 80 Edge and Chromium fixes released this month, and a recurring reminder about Secure Boot certificates you can't afford to ignore this year.
Creators and Guests
Host
Ryan Braunstein
Ryan Braunstein is the host of Patch [FIX] Tuesday and the Manager of Security and IT at Automox, boasting over a decade of experience in cybersecurity. With a strong technical background and a people-first attitude, Ryan excels at demystifying complex security challenges—from automating AWS environments to developing and implementing security tools. His collaborative approach and proactive mindset make him a trusted resource for IT professionals navigating the complexities of cybersecurity.
![Patch [FIX] Tuesday – April 2026 [Double Feature: SQL Another Day + XSS Never Dies], E30](https://img.transistorcdn.com/kMVDrraeT1x_KvgqVA2ZW9u4eXnjbSdQF8gIqUKndWM/rs:fill:0:0:1/w:800/h:800/q:60/mb:500000/aHR0cHM6Ly9pbWct/dXBsb2FkLXByb2R1/Y3Rpb24udHJhbnNp/c3Rvci5mbS85MWM1/MWJmYmVkNDUyZjAz/ZWI3ZjEwOTdmZmZh/YWI1Ni5wbmc.webp)