{"vulnerability": "cve-2026-3965", "sightings": [{"uuid": "535a5f90-76c8-4de1-a27f-7e00671b5eeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3965", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-10)", "content": "", "creation_timestamp": "2026-04-10T00:00:00.000000Z"}, {"uuid": "cc4854ea-a7f6-4adb-b98c-6c5585f74bde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-3965", "type": "seen", "source": "https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3965", "content": "", "creation_timestamp": "2026-03-11T23:16:11.000000Z"}, {"uuid": "c0382e1c-296d-42b6-9127-083e6735e0cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3965", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-27)", "content": "", "creation_timestamp": "2026-04-27T00:00:00.000000Z"}, {"uuid": "06dfd850-f8aa-4965-9f18-5a171790f1c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3965", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-05-01)", "content": "", "creation_timestamp": "2026-05-01T00:00:00.000000Z"}, {"uuid": "8c1372d3-e873-43fa-8fc1-cab48dcd45c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3965", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-28)", "content": "", "creation_timestamp": "2026-04-28T00:00:00.000000Z"}, {"uuid": "736d1756-6eab-44a6-b662-2e26367e82e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3965", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-26)", "content": "", "creation_timestamp": "2026-04-26T00:00:00.000000Z"}, {"uuid": "cb6d3cf0-c0fe-4aa9-a81f-02b16581545c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3965", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mkompalp7h2d", "content": "Hackers exploited two auth bypass flaws (CVE-2026-3965 & CVE-2026-4047) in Qinglong task scheduler to deploy cryptominers via RCE starting Feb 7. Fix applied after initial mitigation proved insufficient. #Qinglong #RemoteExecution #China", "creation_timestamp": "2026-04-30T03:00:25.633652Z"}, {"uuid": "e8f99abc-515c-4bc9-835e-089078f9f529", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39655", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmqugoyfqo2k", "content": "CVE-2026-39655 - WordPress Mayosis Core plugin\nCVE ID : CVE-2026-39655\n \n Published : May 26, 2026, 6:50 a.m. | 3\u00a0hours, 41\u00a0minutes ago\n \n Description : Missing Authorization vulnerability in TeconceTheme Mayosis Core allows Exploiting Incorrectly Configured Access Control Sec...", "creation_timestamp": "2026-05-26T11:14:30.776404Z"}]}