{"uuid": "213cab1e-fff5-4807-9dac-83e3f1080266", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42091", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml2cdogi7q2k", "content": "CVE-2026-42091 - goshs has Cross-Origin Arbitrary File Write via Missing CSRF on PUT and Wildcard CORS\nCVE ID : CVE-2026-42091\n \n Published : May 4, 2026, 5:24 p.m. | 55\u00a0minutes ago\n \n Description : goshs is a SimpleHTTPServer written in Go. Prior to version 2.0.2, the PUT upl...", "creation_timestamp": "2026-05-04T18:26:56.241257Z"}