{"vulnerability": "cve-2026-42289", "sightings": [{"uuid": "8dd01103-753e-461a-aa13-fc2290f3bde3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42289", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlp4whzqty2h", "content": "CVE-2026-42289 - ChurchCRM: Cross-Site Request Forgery (CSRF) Leading to Admin Privilege Escalation\nCVE ID : CVE-2026-42289\n \n Published : May 12, 2026, 11:16 p.m. | 1\u00a0hour, 9\u00a0minutes ago\n \n Description : ChurchCRM is an open-source church management system. Prior to 7.3.2, Us...", "creation_timestamp": "2026-05-13T01:15:59.179632Z"}, {"uuid": "dadeed1b-2fee-4eca-a970-300704a5c02c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42289", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlpdivu7g22z", "content": "\ud83d\udfe0 CVE-2026-42289 - High (8.8)\n\nChurchCRM is an open-source church management system. Prior to 7.3.2, UserEditor.php processes us...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42289/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-13T03:13:40.470690Z"}]}