{"vulnerability": "CVE-2026-4145", "sightings": [{"uuid": "0e96b25e-c711-400f-9911-a61746ebc7bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4145", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjkb3s2lui2r", "content": "", "creation_timestamp": "2026-04-15T15:56:50.512365Z"}, {"uuid": "7ff596fb-4eb8-4477-98b4-2e218a8ec88a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4145", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjkbhjyxcg27", "content": "", "creation_timestamp": "2026-04-15T16:03:25.312127Z"}, {"uuid": "12f4c2fd-462f-4012-aeb9-415ff699b981", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41457", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mk2mtmcsed2i", "content": "", "creation_timestamp": "2026-04-22T04:09:36.766756Z"}, {"uuid": "d86649fa-0ca2-4a8c-a269-a084144adbb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41458", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mk2on3mpmx2i", "content": "", "creation_timestamp": "2026-04-22T04:41:45.420795Z"}, {"uuid": "6014a32b-a6f8-48ba-9b21-17523e81819c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41454", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mk4lzoo2vx2s", "content": "", "creation_timestamp": "2026-04-22T23:00:27.105075Z"}, {"uuid": "e067470f-18f3-4ab1-9fc4-5c28fc853d35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41455", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mk4lzwf43q2w", "content": "", "creation_timestamp": "2026-04-22T23:00:37.653030Z"}, {"uuid": "e94a570d-489e-4ed2-9831-f9f4ad4641ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41454", "type": "seen", "source": "Telegram/oyZMMan-s6Tiqp0E7GyRtqQJ5Rv8-WlZqCZQGxoSrT1vjc4", "content": "", "creation_timestamp": "2026-04-22T23:21:08.000000Z"}, {"uuid": "91e1f97f-702e-4773-a8fb-d2a8c56c545a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41458", "type": "published-proof-of-concept", "source": "Telegram/CG9L58j5W2lDKg2ej39TSqN1GR_VMhHdIDBR5WT05as1evU", "content": "", "creation_timestamp": "2026-04-22T05:15:19.000000Z"}, {"uuid": "3405619d-2af5-4684-907b-d94ff947b414", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41455", "type": "seen", "source": "Telegram/oyZMMan-s6Tiqp0E7GyRtqQJ5Rv8-WlZqCZQGxoSrT1vjc4", "content": "", "creation_timestamp": "2026-04-22T23:21:08.000000Z"}, {"uuid": "0672081d-834d-4d92-9fbf-673f284a87aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4145", "type": "published-proof-of-concept", "source": "Telegram/uZRx6HZozAc0thMR3KKbNyvZVgKIzeeLzgWMgVKyfbYH8EA", "content": "", "creation_timestamp": "2026-04-15T15:20:23.000000Z"}, {"uuid": "8e4068ff-bf2b-4174-ab3a-6f33738bc816", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41459", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/xerte_unauthenticated_mediaupload.rb", "content": "{\"aliases\": [], \"arch\": \"php\", \"author\": [\"bootstrapbool \"], \"autofilter_ports\": [80, 8080, 443, 8000, 8888, 8880, 8008, 3000, 8443], \"autofilter_services\": [\"http\", \"https\"], \"check\": true, \"default_credential\": false, \"description\": \"This module bypasses authentication failure, extension blacklist,\\n          and path traversal vulnerabilities in the /editor/elfinder/php/connector.php\\n          endpoint to upload and execute a shell in Xerte Online Toolkits\\n          versions 3.15 (commit 4e40f8030a2e3267267db7ce03e0ff57270be6f5 as\\n          there's no patch versions used) and earlier.\", \"disclosure_date\": \"2026-04-22\", \"fullname\": \"exploit/multi/http/xerte_unauthenticated_mediaupload\", \"is_install_path\": true, \"mod_time\": \"2026-06-13 16:01:29 +0000\", \"name\": \"Xerte Online Toolkits Arbitrary File Upload - Unauthenticated Media Upload\", \"needs_cleanup\": true, \"notes\": {\"Reliability\": [\"repeatable-session\"], \"SideEffects\": [\"artifacts-on-disk\", \"ioc-in-logs\"], \"Stability\": [\"crash-safe\"]}, \"path\": \"/modules/exploits/multi/http/xerte_unauthenticated_mediaupload.rb\", \"platform\": \"Linux,PHP\", \"post_auth\": false, \"rank\": 600, \"ref_name\": \"multi/http/xerte_unauthenticated_mediaupload\", \"references\": [\"CVE-2026-34413\", \"CVE-2026-34414\", \"CVE-2026-34415\", \"CVE-2026-41459\", \"URL-https://github.com/bootstrapbool/xerteonlinetoolkits-rce\"], \"rport\": 80, \"session_types\": false, \"targets\": [\"PHP\"], \"type\": \"exploit\"}", "creation_timestamp": "2026-06-16T15:57:16.000000Z"}]}