{"vulnerability": "CVE-2026-9726", "sightings": [{"uuid": "6a0c7ecf-f682-49e7-bef7-04398cc2ca2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9726", "type": "seen", "source": "https://bsky.app/profile/thedroptimes.bsky.social/post/3mncxkppixd2h", "content": "Drupal AlternativeCommerce (Basket) 2.1.17 fixes CVE-2026-9726, a highly critical PHP Object Injection vulnerability.\n\nThe issue stems from unsafe deserialisation of user-supplied data and could enable code execution under specific conditions.\n\nhttps://bit.ly/4voktjZ \n\n#Drupal #Cybersecurity", "creation_timestamp": "2026-06-02T15:58:23.098138Z"}]}