{"uuid": "99831c94-f9e8-4d37-9d0c-6fc1a172c63e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42193", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlfpykd4vo2v", "content": "CRITICAL vuln in Plunk (useplunk) < 0.9.0: SNS signatures not verified, allowing spoofed webhook abuse. Patched in 0.9.0 \u2014 confirm your version with vendor. https://radar.offseq.com/threat/cve-2026-42193-cwe-347-improper-verification-of-cr-fc4beea9 #OffSeq #EmailSecurity #CVE202642193", "creation_timestamp": "2026-05-09T07:30:33.624314Z"}