{"vulnerability": "cve-2026-1143", "sightings": [{"uuid": "61b3622e-f45d-4892-9794-9b346a771445", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1143", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcr4b5rtyo24", "content": "", "creation_timestamp": "2026-01-19T07:22:39.034852Z"}, {"uuid": "f0159458-a696-46f6-8476-45171788d9b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1143", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/115915130385303574", "content": "", "creation_timestamp": "2026-01-18T08:22:04.671049Z"}, {"uuid": "a78d815f-47e6-464b-8bda-cd64f3e52b04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1143", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcr4bpyv672k", "content": "", "creation_timestamp": "2026-01-19T07:22:58.041010Z"}, {"uuid": "94db300d-2551-42f8-b5b9-8a6b83c89068", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1143", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcr5xn3fdj2v", "content": "", "creation_timestamp": "2026-01-19T07:53:06.938623Z"}, {"uuid": "548e5de4-eaf7-4a71-af22-7f98783f4920", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11434", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnn3rts64p2a", "content": "CVE-2026-11434 - FluentCMS Blocks Plugin blocks cross site scripting\nCVE ID : CVE-2026-11434\n \n Published : June 6, 2026, 3:16 p.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : A weakness has been identified in FluentCMS 0.0.5. The impacted element is an unknown function of the f...", "creation_timestamp": "2026-06-06T16:40:33.654494Z"}, {"uuid": "547f5a24-5812-442a-9077-f8e6538ff2bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11436", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnn42sa3ui2b", "content": "CVE-2026-11436 - Mage AI Sign-in Flow index.tsx useMutation cross site scripting\nCVE ID : CVE-2026-11436\n \n Published : June 6, 2026, 4:16 p.m. | 16\u00a0minutes ago\n \n Description : A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the ...", "creation_timestamp": "2026-06-06T16:45:33.875145Z"}, {"uuid": "fc0b2b03-2b1a-4200-bd3d-be71587417cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11435", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnn4dqqiou23", "content": "CVE-2026-11435 - Jinher OA nextselectplan.aspx sql injection\nCVE ID : CVE-2026-11435\n \n Published : June 6, 2026, 4:16 p.m. | 16\u00a0minutes ago\n \n Description : A security vulnerability has been detected in Jinher OA 1.0. This affects an unknown function of the file nextselectpla...", "creation_timestamp": "2026-06-06T16:50:34.388147Z"}, {"uuid": "b669bce1-aa8b-409f-8fce-9fad61f55a42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11435", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mnne452ozx23", "content": "Jinher OA 1.0\u306enextselectplan.aspx\u306bSQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u8106\u5f31\u6027\u3002httpOID\u5f15\u6570\u64cd\u4f5c\u3067\u30ea\u30e2\u30fc\u30c8\u653b\u6483\u53ef\u80fd\u3002\nCVE-2026-11435 CVSS 7.3 | HIGH", "creation_timestamp": "2026-06-06T19:09:29.079877Z"}, {"uuid": "a81aa5f1-30b9-4eae-959b-794dbbc56dbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11437", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mnne64vkxu2d", "content": "go-fastdfs-web 1.3.7\u4ee5\u524d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u3067\u3001checkServer\u95a2\u6570\u306bSSRF\u306e\u8106\u5f31\u6027\u304c\u3042\u308a\u3001\u30ea\u30e2\u30fc\u30c8\u304b\u3089\u306e\u60aa\u7528\u304c\u53ef\u80fd\u3067\u3059\u3002\nCVE-2026-11437 CVSS 7.3 | HIGH", "creation_timestamp": "2026-06-06T19:10:35.808026Z"}, {"uuid": "9aea6a0c-f52f-427f-96b4-70b9604d327c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11437", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnnj5nyxej2f", "content": "CVE-2026-11437 - perfree go-fastdfs-web Installation Endpoint checkServer server-side request forgery\nCVE ID : CVE-2026-11437\n \n Published : June 6, 2026, 5:16 p.m. | 3\u00a0hours, 16\u00a0minutes ago\n \n Description : A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected...", "creation_timestamp": "2026-06-06T20:39:49.058287Z"}, {"uuid": "61311a28-3d03-452e-af3c-8bc6bd2ee574", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11439", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnnjregbbn2m", "content": "CVE-2026-11439 - theonedev Parent Project projects improper authorization\nCVE ID : CVE-2026-11439\n \n Published : June 6, 2026, 6:16 p.m. | 2\u00a0hours, 16\u00a0minutes ago\n \n Description : A vulnerability was found in theonedev onedev up to 15.0.5. Affected by this issue is some unknow...", "creation_timestamp": "2026-06-06T20:50:49.988503Z"}, {"uuid": "57cdb079-b66f-49a0-a73b-0213fbf60f52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11438", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnnk2cufpv2l", "content": "CVE-2026-11438 - theonedev projects improper authorization\nCVE ID : CVE-2026-11438\n \n Published : June 6, 2026, 5:16 p.m. | 3\u00a0hours, 16\u00a0minutes ago\n \n Description : A vulnerability has been found in theonedev onedev up to 15.0.5. Affected by this vulnerability is an unknown fu...", "creation_timestamp": "2026-06-06T20:55:50.448929Z"}, {"uuid": "f5167130-0bba-48de-9981-a32c481d7b17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11431", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnlcsdqg4p2s", "content": "CVE-2026-11431 - Path Traversal in Altium Projects Service Allows Arbitrary File Read\nCVE ID : CVE-2026-11431\n \n Published : June 5, 2026, 10:16 p.m. | 57\u00a0minutes ago\n \n Description : A path traversal vulnerability exists in the Projects Service download endpoint shared by Alt...", "creation_timestamp": "2026-06-05T23:40:47.442156Z"}, {"uuid": "548e233f-0334-4ddf-9f85-db6e1b905645", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11437", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mnqlubxao22d", "content": "CVE-2026-11437 - Server-Side Request Forgery in Perfree go-fastdfs-web <=1.3.7. Remote exploitation via /install/checkServer. CVSS 7.3. No patch available from vendor. Mitigate immediately. #CVE #infosec #Perfree\n\nhttps://www.valtersit.com/cve/CVE-2026-11437/", "creation_timestamp": "2026-06-08T02:06:23.980939Z"}]}