{"vulnerability": "cve-2026-24849", "sightings": [{"uuid": "4ce45735-a69c-4060-8d10-9b32e1969be1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24849", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfnmjspy6u26", "content": "", "creation_timestamp": "2026-02-25T02:18:45.253426Z"}, {"uuid": "724b0469-5953-4fdc-a356-5db0e8d065b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24849", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mfnmjtpx442w", "content": "", "creation_timestamp": "2026-02-25T02:18:46.178043Z"}, {"uuid": "32588a73-5e26-4698-ac27-924d5df39c23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24849", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mfnpkdkjvs2u", "content": "", "creation_timestamp": "2026-02-25T03:12:43.815058Z"}, {"uuid": "6e7c8c57-c040-4032-a3fe-6f157555edd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24849", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mfpb5edul62m", "content": "", "creation_timestamp": "2026-02-25T18:00:15.971423Z"}, {"uuid": "a7408d99-e45a-4ea2-8b91-451a19167b44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24849", "type": "seen", "source": "https://t.me/GithubRedTeam/87517", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #Exploit\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-24849\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a doany1\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-06 05:55:27\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nProof-of-concept exploit for **CVE-2026-24849**, an authenticated path-traversal / arbitrary file read in OpenEMR's Fax/SMS (EtherFax) module. Any authenticated user \u2014 regardless of privilege level \u2014 can read arbitrary files from the server filesystem as the web-server user (database credentials, patient documents/PHI, `/etc/passwd`, \u2026).\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-06T06:00:05.000000Z"}]}