{"vulnerability": "cve-2026-34971", "sightings": [{"uuid": "df2ec871-33da-4c85-aa22-e08bbd983997", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34971", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mj3ptjezrn2g", "content": "", "creation_timestamp": "2026-04-09T21:10:42.797268Z"}, {"uuid": "7aef9f8c-48c3-471c-be05-771226d4820a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34971", "type": "seen", "source": "Telegram/6RgwCZFc4Ae1eVERGO141ZaFCzd_AoL4kSRzFJKo9cZLKyo", "content": "", "creation_timestamp": "2026-04-09T21:22:00.000000Z"}, {"uuid": "e4e86aa3-cff4-471f-8ef2-9e60cf2e81ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34971", "type": "seen", "source": "https://bsky.app/profile/greymoth-jp.bsky.social/post/3mmmvp55z4c2q", "content": "9 security fixes shipped:\n\n- Supabase RLS: profiles require auth, subscribers locked\n- jsonwebtoken 9 to 10.4.0 (CVE auth bypass)\n- wasmtime 29 to 36 (CVE-2026-34971, CVSS 9.0)\n- Next.js 16.2.5 to 16.2.6 (13 CVEs)\n- 35 raw service-key calls centralised\n\nkairon.trade\n", "creation_timestamp": "2026-05-24T21:26:28.706753Z"}]}