{"vulnerability": "cve-2026-10108", "sightings": [{"uuid": "a53bc8f6-43c8-42a4-bdde-b81777344a7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10108", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzdp6japs2h", "content": "CVE-2026-10108 - xiaomusic 0.5.7 Path Traversal via GET /music endpoint\nCVE ID : CVE-2026-10108\n \n Published : May 29, 2026, 6:16 p.m. | 55\u00a0minutes ago\n \n Description : xiaomusic v0.5.7 contains an unauthenticated path traversal vulnerability in the GET /music/{file_path:path}...", "creation_timestamp": "2026-05-29T20:08:59.445774Z"}, {"uuid": "359c147e-2348-400f-a19a-5c03806ce71e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10108", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn3x35uqub2h", "content": "\ud83d\udfe0 CVE-2026-10108 - High (7.5)\n\nxiaomusic v0.5.7 contains an unauthenticated path traversal vulnerability in the GET /music/{file...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-10108/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T21:01:03.306922Z"}]}