{"vulnerability": "CVE-2026-63304", "sightings": [{"uuid": "2f16ee9b-a429-48b0-ac25-d93f12da497e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-63304", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqrehkrzjo2w", "content": "CVE-2026-63304\nAVideo versions up to 29.0 are vulnerable to a security risk that allows attackers to execute system commands with the same privileges as the web server. This means an attacker could potentially access or\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-16T13:42:06.120123Z"}, {"uuid": "0f54c3d7-82c0-45ff-91b5-b7212aaba6c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-63304", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqrjg32vln2m", "content": "CVE-2026-63304 - AVideo through 29.0 OS Command Injection via listFFmpegProcesses\nCVE ID : CVE-2026-63304\n \n Published : July 16, 2026, 1:16 p.m. | 1\u00a0hour, 18\u00a0minutes ago\n \n Description : AVideo through 29.0 contains an OS command injection vulnerability in plugin/API/standAlo...", "creation_timestamp": "2026-07-16T15:10:44.875606Z"}]}