{"uuid": "e7081d68-007a-479e-9800-ae41263235c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42298", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlf2wfsfch2p", "content": "CVE-2026-42298 - Postiz: Arbitrary Code Execution and Token Exfiltration in pr-docker-build.yml via untrusted Dockerfile.dev\nCVE ID : CVE-2026-42298\n \n Published : May 8, 2026, 11:16 p.m. | 1\u00a0hour, 4\u00a0minutes ago\n \n Description : Postiz is an AI social media scheduling tool. Pr...", "creation_timestamp": "2026-05-09T01:13:31.914252Z"}