{"vulnerability": "CVE-2026-43646", "sightings": [{"uuid": "2a82ce95-6e5c-48df-ad6f-8da2977db9fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43646", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ml5mkh2nvi25", "content": "CVE-2026-43646: Apache Wicket: crafted URLs can bypass PackageResourceGuard", "creation_timestamp": "2026-05-06T02:07:40.148381Z"}, {"uuid": "411409d7-db9c-4146-a4bb-09282fa80fba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43646", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml76yfunya2r", "content": "\ud83d\udfe0 CVE-2026-43646 - High (7.5)\n\nExposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Wicket.\n\nThis ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-43646/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-06T17:10:18.749409Z"}]}