{"vulnerability": "cve-2026-4090", "sightings": [{"uuid": "4c124270-0db0-47c0-9551-d44923c7f5ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40900", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjnnruzhip2k", "content": "", "creation_timestamp": "2026-04-17T00:21:55.890108Z"}, {"uuid": "c00bb7dc-2e3b-4330-b07c-9b8f0f94a86b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40901", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjno5a2vbz2f", "content": "", "creation_timestamp": "2026-04-17T00:28:16.667934Z"}, {"uuid": "4f44d4ef-ca5d-4da2-a9da-4b019a4d9014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40900", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjxctbkwdd2z", "content": "", "creation_timestamp": "2026-04-20T20:32:29.563397Z"}, {"uuid": "1d6b7761-cb4c-4d2a-a39f-b5ae48390772", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40901", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjxctjntez2g", "content": "", "creation_timestamp": "2026-04-20T20:32:38.129422Z"}, {"uuid": "7c1958ba-0706-43c8-afc9-4ef3ba261be1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40905", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjzyc6yddp2g", "content": "", "creation_timestamp": "2026-04-21T22:01:58.039590Z"}, {"uuid": "fa6ec2ae-d1f9-426f-9928-15e7bfdebb85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40906", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mjzycgjow32e", "content": "", "creation_timestamp": "2026-04-21T22:02:05.972765Z"}, {"uuid": "dddc1724-3990-4807-9f92-18dec033cfc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40906", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjzz2zz5lr2c", "content": "", "creation_timestamp": "2026-04-21T22:15:51.131291Z"}, {"uuid": "2efea65b-24ba-45e4-82b8-cfc9da559495", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40905", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mk22bozmx72o", "content": "", "creation_timestamp": "2026-04-21T22:37:27.969247Z"}, {"uuid": "a423002f-9030-4e29-9ac9-fd7bd3af6e65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40906", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116446830801393087", "content": "", "creation_timestamp": "2026-04-22T06:00:28.910757Z"}, {"uuid": "a430de84-f7ba-4bfe-8d19-184f38c65444", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40906", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mk2szvtarx2d", "content": "", "creation_timestamp": "2026-04-22T06:00:31.260611Z"}, {"uuid": "15c6f1dd-3d93-456e-9004-187de3dd568b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4090", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mk6ub5fm4m2s", "content": "", "creation_timestamp": "2026-04-23T20:33:06.228296Z"}, {"uuid": "d0227bdc-c0d4-4925-9c79-c52a037f4768", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40909", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mk6xtmlarj2u", "content": "", "creation_timestamp": "2026-04-23T21:37:07.235679Z"}, {"uuid": "e290804e-c2ae-4e51-a0e8-faf32748f589", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40900", "type": "published-proof-of-concept", "source": "Telegram/x6U1CUbtpfWdw00zGhzow4OOkK7AiEHUVbiM6o3SMYH6zs0", "content": "", "creation_timestamp": "2026-04-16T23:18:23.000000Z"}, {"uuid": "0926d567-e5da-4691-a85f-d59b8d43c4a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40901", "type": "published-proof-of-concept", "source": "Telegram/x6U1CUbtpfWdw00zGhzow4OOkK7AiEHUVbiM6o3SMYH6zs0", "content": "", "creation_timestamp": "2026-04-16T23:18:23.000000Z"}, {"uuid": "4a205679-85e3-4391-be66-bb1fd579d226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40909", "type": "published-proof-of-concept", "source": "Telegram/PLPaRbcJDaPiLP6CzuoYpp_an71AlFD-MBdwXLbLZgMJCSE", "content": "", "creation_timestamp": "2026-04-21T21:27:33.000000Z"}, {"uuid": "fc93794f-07a3-4cbb-ad79-684c83f54e1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40903", "type": "published-proof-of-concept", "source": "Telegram/PLPaRbcJDaPiLP6CzuoYpp_an71AlFD-MBdwXLbLZgMJCSE", "content": "", "creation_timestamp": "2026-04-21T21:27:33.000000Z"}, {"uuid": "973b3681-a42b-4dfa-abe2-15bf1934d8e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40906", "type": "published-proof-of-concept", "source": "Telegram/ITN0hTjNGfPMK-REHkV5qJBsGo4t4-tf1bJT5aod5DHh0UQ", "content": "", "creation_timestamp": "2026-04-21T23:30:36.000000Z"}, {"uuid": "565a976a-a848-43a4-8b01-28d0cda224af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40905", "type": "published-proof-of-concept", "source": "Telegram/ITN0hTjNGfPMK-REHkV5qJBsGo4t4-tf1bJT5aod5DHh0UQ", "content": "", "creation_timestamp": "2026-04-21T23:30:36.000000Z"}, {"uuid": "0f26acb9-41b2-436a-a507-b3f883da7683", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40904", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqdhe6gww2n", "content": "\ud83d\udfe0 CVE-2026-40904 - High (8.1)\n\nChartbrew is an open-source web application that can connect directly to databases and APIs and u...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-40904/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T19:20:16.387951Z"}, {"uuid": "0c380b68-cea5-4ba5-8cac-9e1f4b032bed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40904", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mkqkmlikdx2p", "content": "CVE-2026-40904 - Chartbrew: Incorrect Access Control in dataset and dataRequest routes via team-scoped permission checks\nCVE ID : CVE-2026-40904\n \n Published : April 30, 2026, 7:16 p.m. | 1\u00a0hour, 2\u00a0minutes ago\n \n Description : Chartbrew is an open-source web application that c...", "creation_timestamp": "2026-04-30T21:28:27.734701Z"}, {"uuid": "d1500a08-24a1-4e90-8330-21db59bd363f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40906", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mlqs3aedcc2q", "content": "\ud83d\udccc CVE-2026-40906 - Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1/shape API is vulnerable to error-based ... https://www.cyberhub.blog/cves/CVE-2026-40906", "creation_timestamp": "2026-05-13T17:07:07.279704Z"}, {"uuid": "dacab1aa-bc0f-4d69-bf9c-17edbea53ce9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40906", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mlqt2f25q425", "content": "\ud83d\udccc CVE-2026-40906 - Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1/shape API is vulnerable to error-based ... https://www.potatohub.blog/cves/CVE-2026-40906", "creation_timestamp": "2026-05-13T17:24:32.318426Z"}, {"uuid": "e12c743b-95a9-4582-bb2a-2197ddb1c21e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40900", "type": "seen", "source": "https://www.acn.gov.it/portale/w/dataease-disponibile-poc-per-lo-sfruttamento-di-vulnerabilita", "content": "", "creation_timestamp": "2026-05-26T06:08:25.000000Z"}, {"uuid": "5e6928e2-5594-41db-b0f1-c2d95e838fce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40901", "type": "seen", "source": "https://www.acn.gov.it/portale/w/dataease-disponibile-poc-per-lo-sfruttamento-di-vulnerabilita", "content": "", "creation_timestamp": "2026-05-26T06:08:25.000000Z"}, {"uuid": "a1d09512-0513-4159-813b-10ae4e1f2f60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40902", "type": "published-proof-of-concept", "source": "https://github.com/PHPOffice/PhpSpreadsheet/security/advisories/GHSA-7c6m-4442-2x6m", "content": "", "creation_timestamp": "2026-04-28T23:49:04.000000Z"}, {"uuid": "c04fd845-89df-4182-91d6-74796b1b05ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40907", "type": "published-proof-of-concept", "source": "https://github.com/WWBN/AVideo/security/advisories/GHSA-gpgp-w4x2-h3h7", "content": "", "creation_timestamp": "2026-04-13T12:03:15.000000Z"}, {"uuid": "76be50d0-a34e-453d-a616-2da6f7e2174d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40909", "type": "published-proof-of-concept", "source": "https://github.com/WWBN/AVideo/security/advisories/GHSA-6rc6-p838-686f", "content": "", "creation_timestamp": "2026-04-13T12:19:46.000000Z"}, {"uuid": "d98d0c5f-84ae-46b3-a308-78e3e848d08d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40908", "type": "published-proof-of-concept", "source": "https://github.com/WWBN/AVideo/security/advisories/GHSA-52hf-63q4-r926", "content": "", "creation_timestamp": "2026-04-13T12:09:41.000000Z"}]}