{"uuid": "3a02cb2f-49eb-4479-9def-693fa085b0b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12416", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mozkhv3zkr2g", "content": "CRITICAL: pravel Invoice Generator \u22641.0.0 lets unauthenticated attackers reset any user password \u2014 including admins \u2014 via a broken password reset. Restrict access or disable plugin now. https://radar.offseq.com/threat/cve-2026-12416-cwe-640-weak-password-recovery-mech-e09858a3967d35a9 #OffSeq #Wo...", "creation_timestamp": "2026-06-24T09:00:35.088542Z"}