{"uuid": "068f9f49-d5d9-40c3-b70e-81d9d5e14d77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41201", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mmc3hwnkmj2c", "content": "CVE-2026-41201 - Critical Stored DOM XSS in Ci4ms CMS. Full account takeover via malicious SQL file in backup module. CVSS 9.1. Update to v0.31.5.0 now. #CVE #Ci4ms #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-41201/", "creation_timestamp": "2026-05-20T14:10:32.626188Z"}