{"vulnerability": "CVE-2026-4566", "sightings": [{"uuid": "3106fc4a-3537-4ce5-9554-1dd4c716783d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4566", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mhp3yxisc42x", "content": "", "creation_timestamp": "2026-03-23T03:18:42.498476Z"}, {"uuid": "d494481d-2377-4e82-8630-05e150405043", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4566", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mhpbmbe4tt2l", "content": "", "creation_timestamp": "2026-03-23T04:58:58.800991Z"}, {"uuid": "c4ae4827-7869-4bec-a3f5-a0ca4ee8d237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4566", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhp6zno56w2e", "content": "", "creation_timestamp": "2026-03-23T04:12:46.682884Z"}, {"uuid": "7a50255a-dcba-4a81-9b2b-3219d85649ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45667", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlwlgnytx32i", "content": "CVE-2026-45667 - Open WebUI: Unauthenticated endpoint can trigger embedding generation (cost/DoS)\nCVE ID : CVE-2026-45667\n \n Published : May 15, 2026, 10:16 p.m. | 1\u00a0hour, 19\u00a0minutes ago\n \n Description : Open WebUI is a self-hosted artificial intelligence platform designed to ...", "creation_timestamp": "2026-05-16T00:24:12.628754Z"}, {"uuid": "fe4f2313-a071-4bb6-99d2-40a988b9fa7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4566", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116271972001797029", "content": "", "creation_timestamp": "2026-03-22T08:51:35.106403Z"}, {"uuid": "52fd930d-99fa-4160-ba34-653bbfaad97e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45665", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlwmkigryb2e", "content": "CVE-2026-45665 - Open WebUI: Stored XSS in Banner Component via Improper Sanitization Order\nCVE ID : CVE-2026-45665\n \n Published : May 15, 2026, 10:16 p.m. | 1\u00a0hour, 19\u00a0minutes ago\n \n Description : Open WebUI is a self-hosted artificial intelligence platform designed to operat...", "creation_timestamp": "2026-05-16T00:45:51.124560Z"}, {"uuid": "8c98d8a6-84ea-4c99-bff6-a240df8e5aea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45667", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-m69w-p7m4-585j", "content": "", "creation_timestamp": "2026-05-11T19:07:10.000000Z"}, {"uuid": "6fd51006-c811-4dcc-ad64-7662e693d64a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45669", "type": "published-proof-of-concept", "source": "https://github.com/nuxt/nuxt/security/advisories/GHSA-fx6j-w5w5-h468", "content": "", "creation_timestamp": "2026-05-18T11:07:53.000000Z"}, {"uuid": "f99f71cc-6f15-4b18-a5e0-566080952764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4566", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmxrcjp5ki23", "content": "\ud83d\udccc CVE-2026-4566 - A flaw has been found in Belkin F9K1122 1.00.33. The affected element is the function formWISP5G of the file /goform/formWISP5G. Executing a manipulat... https://www.cyberhub.blog/cves/CVE-2026-4566", "creation_timestamp": "2026-05-29T05:07:07.823329Z"}, {"uuid": "8fc73054-0d7c-4cd0-9030-2a182201155b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45666", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-x3qm-p8hr-3c3h", "content": "", "creation_timestamp": "2026-05-11T19:03:58.000000Z"}, {"uuid": "0cf6d42e-8e0d-4f5a-9171-0d7f0aaa24bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45665", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-cqp4-qqvg-3787", "content": "", "creation_timestamp": "2026-05-11T18:42:11.000000Z"}, {"uuid": "4aa2ca38-e256-4ff2-b6bb-9019f6f63abf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45661", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzebcqru52h", "content": "CVE-2026-45661 - Dokploy: Remote Code Execution through Path Traversal\nCVE ID : CVE-2026-45661\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.5 and earlier, a critical path travers...", "creation_timestamp": "2026-05-29T20:19:07.895907Z"}, {"uuid": "da12445f-8987-47c4-a0ab-18fda498b271", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45662", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmyz6act6z2v", "content": "\ud83d\udfe0 CVE-2026-45662 - High (8.8)\n\nDokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.0 and earlier, the deleteR...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45662/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-29T17:00:34.534032Z"}, {"uuid": "9ed41954-2bfe-4c52-bc07-f7ffeb70443a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45663", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmyz6hazlc2d", "content": "\ud83d\udd34 CVE-2026-45663 - Critical (9.9)\n\nDokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.1 and earlier, a command i...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45663/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-29T17:00:41.318067Z"}, {"uuid": "67d6e7b2-f64b-4229-83d7-2cbfa31e6fa4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45668", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzgibblfi2g", "content": "CVE-2026-45668 - Trilium Notes : Note Import to RCE via #docName Path Traversal (Safe Import Enabled)\nCVE ID : CVE-2026-45668\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Trilium Notes is a cross-platform, hierarchical note taking application focuse...", "creation_timestamp": "2026-05-29T20:58:48.578019Z"}, {"uuid": "ed010e79-158b-4e84-9dd1-6ae0f6e4269d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45661", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn2632dgwx2g", "content": "\ud83d\udd34 CVE-2026-45661 - Critical (9.9)\n\nDokploy is a free, self-hostable Platform as a Service (PaaS). In 0.26.5 and earlier, a critical ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45661/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T04:00:55.721576Z"}]}