{"vulnerability": "cve-2026-1156", "sightings": [{"uuid": "fb58add7-7cfd-4319-934f-67040e3fb61a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1156", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcrvbl5jv52w", "content": "", "creation_timestamp": "2026-01-19T14:50:17.206795Z"}, {"uuid": "4fbcd6ea-ca57-44d2-b010-0fb8e2182d47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1156", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcs7fsm5my2k", "content": "", "creation_timestamp": "2026-01-19T17:51:35.663299Z"}, {"uuid": "ec2e2b4d-5f07-4f3b-8ff9-f5d852136514", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11569", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnrq5vv63p23", "content": "CVE-2026-11569 - Quay: quay: stored xss via filedrop svg upload\nCVE ID : CVE-2026-11569\n \n Published : June 8, 2026, 12:16 p.m. | 16\u00a0minutes ago\n \n Description : A flaw was found in Quay. The filedrop endpoint accepts any mime type without validation, allowing an authenticated...", "creation_timestamp": "2026-06-08T12:55:52.439385Z"}, {"uuid": "5f135046-4e0c-4be1-a00e-0a98ab4be39c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11561", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnzftyxy5k2a", "content": "CVE-2026-11561 - SSTI in Soagen Informatics' Apinizer\nCVE ID : CVE-2026-11561\n \n Published : June 11, 2026, 12:28 p.m. | 51\u00a0minutes ago\n \n Description : Improper neutralization of special elements used in an expression language statement ('expression language injection') vulne...", "creation_timestamp": "2026-06-11T14:12:40.430352Z"}, {"uuid": "27c492a2-5446-4801-892e-5a5ab9fd9ea6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11561", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mobvkrzl6323", "content": "\ud83d\udea8  ALERT: CVE-2026-11561\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nImproper neutralization of special elements used in an expression language statement ('expression language injection') vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection.\n\nThis issue affect", "creation_timestamp": "2026-06-14T23:15:08.762888Z"}]}