{"vulnerability": "cve-2026-2849", "sightings": [{"uuid": "4df145a3-96c2-4785-89fe-e8cc9da4481f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28492", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mgdu5m462m27", "content": "", "creation_timestamp": "2026-03-05T22:33:39.428365Z"}, {"uuid": "c06b5ba9-cd5c-4fc2-b3e8-2d5e1d021c85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28497", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mgeg353h542o", "content": "", "creation_timestamp": "2026-03-06T03:54:23.942211Z"}, {"uuid": "7492ad32-069d-4f50-b5ab-7f2aad07fe75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28490", "type": "seen", "source": "https://gist.github.com/alon710/2d123731c9da93f7319d6377d20965fd", "content": "", "creation_timestamp": "2026-03-16T18:10:06.000000Z"}, {"uuid": "1fddf5b1-ca3c-4dec-b3f9-81eecafd16b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28495", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mgvpm4fofr23", "content": "", "creation_timestamp": "2026-03-13T01:00:13.393074Z"}, {"uuid": "6e80ba68-e3aa-4355-b794-2d3526e8a1e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28494", "type": "seen", "source": "https://infosec.exchange/users/certvde/statuses/116316841599408182", "content": "", "creation_timestamp": "2026-03-30T07:02:32.918659Z"}, {"uuid": "2bf6b733-eb6f-4848-bb80-093fd3950946", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28493", "type": "seen", "source": "https://infosec.exchange/users/certvde/statuses/116316841599408182", "content": "", "creation_timestamp": "2026-03-30T07:02:33.318887Z"}, {"uuid": "64e8a253-f844-4f23-a1cb-343c466c0bf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28498", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mheloq2uhh2h", "content": "", "creation_timestamp": "2026-03-18T23:00:03.646518Z"}, {"uuid": "8699c465-1262-4b6c-8242-f7feedb92cb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-28498", "type": "published-proof-of-concept", "source": "https://github.com/authlib/authlib/security/advisories/GHSA-m344-f55w-2m6j", "content": "", "creation_timestamp": "2026-03-15T17:48:43.000000Z"}, {"uuid": "b79d25e2-f7ea-4a11-a7fa-05f4b4cc4bfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-28490", "type": "published-proof-of-concept", "source": "https://github.com/authlib/authlib/security/advisories/GHSA-7432-952r-cw78", "content": "", "creation_timestamp": "2026-03-15T17:48:25.000000Z"}, {"uuid": "e937397e-efad-4ef9-81a9-fdbf547f1f0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-28492", "type": "published-proof-of-concept", "source": "https://github.com/filebrowser/filebrowser/security/advisories/GHSA-mr74-928f-rw69", "content": "", "creation_timestamp": "2026-02-28T10:46:01.000000Z"}, {"uuid": "f0743965-999b-4fc3-a33a-2871e2e658ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moxs32hcvd2w", "content": "CVE-2026-28496 - FOSSBilling: Server-side template injection in Twig template rendering enables information disclosure and RCE\nCVE ID : CVE-2026-28496\n \n Published : June 23, 2026, 2:20 p.m. | 1\u00a0hour, 23\u00a0minutes ago\n \n Description : FOSSBilling is a free, open-source billing a...", "creation_timestamp": "2026-06-23T16:11:13.997223Z"}, {"uuid": "2860f536-e4bd-4758-b2fb-6ea34e754233", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116800802356327413", "content": "New.\n\"Today VulnCheck is disclosing CVE-2026-28496, an unauthenticated remote code execution chain in FOSSBilling, the open-source billing and client-management platform.\"\nVulnCheck: CVE-2026-28496 - FOSSBilling Auth Bypass and Twig SSTI to Unauthenticated RCE https://www.vulncheck.com/blog/fossbilling-auth-bypass-ssti-rce @vulncheck #infosec #opensource #vulnerability", "creation_timestamp": "2026-06-23T18:20:14.295475Z"}, {"uuid": "8d7cdd41-f28f-498c-b8fa-c6da4e6f363b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-28496.yaml", "content": "", "creation_timestamp": "2026-06-23T07:40:44.000000Z"}, {"uuid": "ee697ee9-7668-4006-be82-0c4fff7e9a3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-28496.yaml", "content": "", "creation_timestamp": "2026-06-24T15:00:03.618202Z"}, {"uuid": "71d4750b-c922-4534-a814-bacf83a3167f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-28496.yaml", "content": "", "creation_timestamp": "2026-06-25T00:00:02.672972Z"}, {"uuid": "3b9142c6-e9ea-4a87-9064-965536865008", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-28496.yaml", "content": "", "creation_timestamp": "2026-06-26T00:00:02.826649Z"}, {"uuid": "5e039b80-5ac5-47f4-ae0e-f645220f8fe7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-28496.yaml", "content": "", "creation_timestamp": "2026-06-27T00:00:03.424317Z"}, {"uuid": "137f6c32-b3af-4a6d-b82b-e720f4d67413", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "seen", "source": "Telegram/ItjnC_FoWME3_hAWnOsnrDgRkC5Sqs1SuPvtN2fslLkrh58", "content": "", "creation_timestamp": "2026-07-16T19:00:27.563626Z"}, {"uuid": "3a62a7f5-bd00-471a-ba33-ac5b31a1c217", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "seen", "source": "Telegram/ItjnC_FoWME3_hAWnOsnrDgRkC5Sqs1SuPvtN2fslLkrh58", "content": "", "creation_timestamp": "2026-07-17T01:00:25.397113Z"}, {"uuid": "32d4c893-413e-445c-8ec0-b08372dae93a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28496", "type": "published-proof-of-concept", "source": "Telegram/ItjnC_FoWME3_hAWnOsnrDgRkC5Sqs1SuPvtN2fslLkrh58", "content": "", "creation_timestamp": "2026-07-18T01:00:03.985891Z"}]}