{"vulnerability": "cve-2026-4079", "sightings": [{"uuid": "9cd352a8-8d7f-429f-a132-f00c7b2fc116", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40797", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116520794744579709", "content": "\ud83d\udd34 CRITICAL: CVE-2026-40797 in WebinarIgnition (\u22644.08.253) enables unauthenticated Blind SQL Injection. No patch yet \u2014 use WAF, validate inputs, restrict DB perms. High confidentiality risk. Details: https://radar.offseq.com/threat/cve-2026-40797-cwe-89-improper-neutralization-of-s-1958ecd4 #OffSeq #SQLInjection #WebinarIgnition", "creation_timestamp": "2026-05-05T07:30:29.069409Z"}, {"uuid": "d8ebc75f-c8f2-4af1-a3a6-e8ddc8394fd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4079", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mjvxis6jj724", "content": "", "creation_timestamp": "2026-04-20T07:37:06.080754Z"}, {"uuid": "0029d977-4c5f-40bb-902f-757831259d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40797", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3ml3o4sriyd2j", "content": "CRITICAL: Blind SQL Injection in WebinarIgnition (\u22644.08.253) allows remote data extraction \u2014 no patch yet. Mitigate: strengthen input validation, use WAF. Stay alert for updates. https://radar.offseq.com/threat/cve-2026-40797-cwe-89-improper-neutralization-of-s-1958ecd4 #OffSeq #SQLInjection #Web...", "creation_timestamp": "2026-05-05T07:30:31.144430Z"}, {"uuid": "9b20fb50-e842-4230-9d82-437d8faa64a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40797", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3ml3ptvr53a2w", "content": "WebinarIgnition\u306eSQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u8106\u5f31\u6027\u306b\u3088\u308a\u3001\u653b\u6483\u8005\u306fWebinarIgnition\u306b\u767b\u9332\u3055\u308c\u305f\u60c5\u5831\u3092\u76d7\u307f\u51fa\u3059\u53ef\u80fd\u6027\u304c\u3042\u308b\u3002\nCVE-2026-40797 CVSS 9.3 | CRITICAL", "creation_timestamp": "2026-05-05T08:01:19.761068Z"}, {"uuid": "eb97f925-39a8-48f9-98cd-7e521f2610b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40797", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml4vbhq6xw2q", "content": "\ud83d\udd34 CVE-2026-40797 - Critical (9.3)\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerabilit...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-40797/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-05T19:11:03.156465Z"}, {"uuid": "6579e275-76e8-4f97-8b8a-1d783906f513", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40797", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml3yugygs62i", "content": "CVE-2026-40797 - WordPress WebinarIgnition plugin\nCVE ID : CVE-2026-40797\n \n Published : May 5, 2026, 7:16 a.m. | 1\u00a0hour, 19\u00a0minutes ago\n \n Description : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saleswonder LLC Webin...", "creation_timestamp": "2026-05-05T10:42:40.695207Z"}, {"uuid": "8688cbbc-2339-4571-80e0-abfe905c32ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40796", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mm5cizjp7a2c", "content": "CVE-2026-40796 wppizza (CVSS Score 4.3) #WordPress plugin #vulnerability #cybersecurity #wordpressfirewall #wordpresssecurity #hacking #wpsecurity #atomicedge", "creation_timestamp": "2026-05-18T16:33:06.647889Z"}]}