{"vulnerability": "cve-2026-2432", "sightings": [{"uuid": "d3a289f3-b4b6-4cf9-8925-0b974d21c7c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24322", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mei4faffdp24", "content": "", "creation_timestamp": "2026-02-10T04:21:26.079565Z"}, {"uuid": "5a6f9396-af80-47ca-b3cb-1772bae3cdba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-2432", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mkqxbn7cb52r", "content": "CM Custom Reports plugin: Stored XSS (CVE-2026-2432). Admin input not sanitized, outputs raw. CVSS 4.4. Multi-site risk. No patch. Basic DevSecOps failure. #WordPress #XSS #CodeQuality\n\n https://www.valtersit.com/cve/2026/03/cve-2026-2432/", "creation_timestamp": "2026-05-01T01:14:59.017382Z"}]}