{"uuid": "a95b3853-9ac8-478d-9c37-1c47874b81cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59709", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq2zc75tn32b", "content": "CVE-2026-59709 - Ghostfolio - Unauthorized Portfolio Holding Tag Modification via Missing Permission Check\nCVE ID : CVE-2026-59709\n \n Published : July 7, 2026, 3:16 p.m. | 31\u00a0minutes ago\n \n Description : Ghostfolio's PUT /api/v1/portfolio/holding/:dataSource/:symbol/tags endpo...", "creation_timestamp": "2026-07-07T16:23:40.892153Z"}