{"uuid": "eed0238f-d852-424f-a744-3065fcd3b3cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42298", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlfavp7yjp2g", "content": "CRITICAL: gitroomhq postiz-app (< da44801) lets attackers run code & steal GITHUB_TOKEN via PRs. Patch to commit da44801 now to stay secure! https://radar.offseq.com/threat/cve-2026-42298-cwe-94-improper-control-of-generati-f33886f6 #OffSeq #CVE202642298 #DevSecOps", "creation_timestamp": "2026-05-09T03:00:31.240331Z"}