{"vulnerability": "CVE-2026-48614", "sightings": [{"uuid": "b1c8d381-978b-4435-9515-91c8bbfcbbe6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48614", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpypo6pjat2j", "content": "CVE-2026-48614 - plesk\nAn attacker with a Plesk account can write files with root access, potentially leading to server compromise. This is a serious issue, as it allows unauthorized access to sensitive server\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#plesk #webpros #CVE #infosec", "creation_timestamp": "2026-07-06T18:26:05.908254Z"}, {"uuid": "57f7ca9e-7caf-4680-853f-fe8c08d9876b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48614", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpyzse3xqg2q", "content": "CVE-2026-48614 - Plesk XML API Improper Authorization Privilege Escalation\nCVE ID : CVE-2026-48614\n \n Published : July 6, 2026, 6:16 p.m. | 2\u00a0hours, 57\u00a0minutes ago\n \n Description : An improper authorization vulnerability in the Plesk XML API allows an authenticated user to inj...", "creation_timestamp": "2026-07-06T21:27:24.520122Z"}, {"uuid": "e1cc215b-2e26-4789-b397-be310df855a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48614", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mq33v36shh22", "content": "CVE-2026-48614 - Critical arbitrary file write as root in Plesk XML API. CVSS 9.9. No patch available. Apply workarounds immediately. #CVE #Plesk #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-48614/", "creation_timestamp": "2026-07-07T17:10:01.633714Z"}]}