{"vulnerability": "CVE-2026-48611", "sightings": [{"uuid": "7a52740a-98bb-4653-834b-90d8105a51f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48611", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mo2xhfwjef24", "content": "\ud83d\udd34 CVE-2026-48611 - Critical (9.8)\n\nImproper authentication checks in the OAuth implementation allow account hijacking even when OAut...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-48611/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-12T05:00:25.771993Z"}, {"uuid": "35ca5189-c5fd-459b-9810-306d1bc3f230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48611", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo2zi7lj7g2b", "content": "CVE-2026-48611 - Google OAuth Account Hijacking Vulnerability\nCVE ID : CVE-2026-48611\n \n Published : June 12, 2026, 4:17 a.m. | 49\u00a0minutes ago\n \n Description : Improper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured ...", "creation_timestamp": "2026-06-12T05:36:39.457402Z"}, {"uuid": "eafd2b2b-58c3-452a-8809-b3c12bc6ed8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48611", "type": "seen", "source": "https://bsky.app/profile/ROllerozxa.hachyderm.io.ap.brid.gy/post/3mo4fv2jki6o2", "content": "Apparently there is a critical #phpBB vulnerability (CVE-2026-48611) that allows anyone to hijack user accounts on any forum with a vulnerable version that has mostly flown under the radar. Someone on a forum I frequent managed to log into the admin account to demonstrate it.\n\nThe fix seems to [\u2026]", "creation_timestamp": "2026-06-12T18:51:21.894384Z"}]}