{"vulnerability": "cve-2026-4275", "sightings": [{"uuid": "da46d10c-6df2-44d4-a5a3-ad63bfe68e1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42755", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtgr4okzl2i", "content": "CVE-2026-42755 - WordPress TableOn plugin\nCVE ID : CVE-2026-42755\n \n Published : 27 May 2026, 9:49 a.m. | 1\u00a0hour, 20\u00a0minutes ago\n \n Description : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 TableOn posts-tabl...", "creation_timestamp": "2026-05-27T11:47:47.558196Z"}, {"uuid": "951601bc-0504-4f48-95a1-0b60fc1c2e2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42757", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmthcznxr62p", "content": "CVE-2026-42757 - WordPress WebinarIgnition plugin\nCVE ID : CVE-2026-42757\n \n Published : 27 May 2026, 9:49 a.m. | 1\u00a0hour, 20\u00a0minutes ago\n \n Description : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saleswonder Team: Tobias We...", "creation_timestamp": "2026-05-27T11:57:48.346311Z"}, {"uuid": "861cf73e-0ac6-4d66-9cdf-e0b402117938", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42756", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmthhzbw3y2c", "content": "\ud83d\udd34 CVE-2026-42756 - Critical (9.9)\n\nImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in L...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42756/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T12:00:36.620280Z"}, {"uuid": "61a739f2-15ab-42b4-8dc2-650217b91f04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42757", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmthiasatw2s", "content": "\ud83d\udd34 CVE-2026-42757 - Critical (9.9)\n\nImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in S...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42757/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T12:00:44.127446Z"}, {"uuid": "77297b5c-0aff-421d-aa7f-3a75e18578d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42758", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmthiihcsk2w", "content": "\ud83d\udd34 CVE-2026-42758 - Critical (9.8)\n\nIncorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42758/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T12:00:52.125584Z"}, {"uuid": "6dc2845d-9e6c-49ba-8288-32a57b765729", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42756", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmti44iy5t2k", "content": "CVE-2026-42756 - WordPress QuickWebP \u2013 Compress / Optimize Images &amp; Convert WebP | SEO Friendly plugin\nCVE ID : CVE-2026-42756\n \n Published : 27 May 2026, 9:49 a.m. | 1\u00a0hour, 20\u00a0minutes ago\n \n Description : Improper Limitation of a Pathname to a Restricted Directory ('Path Tra...", "creation_timestamp": "2026-05-27T12:11:50.096677Z"}, {"uuid": "62922000-207b-4017-93a3-d8eb39a7d075", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42758", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtjcflqm22c", "content": "CVE-2026-42758 - WordPress WebinarIgnition plugin\nCVE ID : CVE-2026-42758\n \n Published : 27 May 2026, 9:49 a.m. | 1\u00a0hour, 20\u00a0minutes ago\n \n Description : Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege ...", "creation_timestamp": "2026-05-27T12:33:14.691031Z"}, {"uuid": "c4aa1e86-6127-4c27-a99c-6a322edb13d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42759", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtkkb5yzt2r", "content": "CVE-2026-42759 - WordPress Affiliate Super Assistent plugin\nCVE ID : CVE-2026-42759\n \n Published : May 27, 2026, 11:16 a.m. | 48\u00a0minutes ago\n \n Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Timo Affiliate Su...", "creation_timestamp": "2026-05-27T12:55:33.335150Z"}, {"uuid": "3f65ec19-f251-4cfc-b28b-2cc2c00ade7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42754", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtkofkna62q", "content": "CVE-2026-42754 - WordPress Favicon plugin\nCVE ID : CVE-2026-42754\n \n Published : May 27, 2026, 11:16 a.m. | 48\u00a0minutes ago\n \n Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in phbernard Favicon favicon-by-realfa...", "creation_timestamp": "2026-05-27T12:57:53.769718Z"}, {"uuid": "60a3950b-6bf5-4e00-b3c1-2e9e3460b789", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42755", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmto7bln332n", "content": "\ud83d\udd34 CVE-2026-42755 - Critical (9.3)\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerabilit...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42755/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T14:00:59.359133Z"}, {"uuid": "658bd655-4d08-4948-ba74-3fa970591592", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4275", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq7vgdjneg26", "content": "CVE-2026-4275 - Divi Torque Lite\nCVE ID : CVE-2026-4275\n \n Published : July 9, 2026, 11:16 a.m. | 3\u00a0hours, 15\u00a0minutes ago\n \n Description : The Divi Torque Lite \u2013 Divi Theme, Divi Builder &amp; Extra Theme plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ...", "creation_timestamp": "2026-07-09T14:57:43.687746Z"}, {"uuid": "c15c6f2b-d95f-4ae3-b74e-1a660f39772d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4275", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqatqsu5rv2o", "content": "CVE-2026-4275. CVSS 8.8. Divi Torque Lite lets anyone install plugins without logging in. Your site becomes a staging ground for attackers. Update to 4.2.3 now. Scan: pulse-wp.com\n#WordPress #CSRF #CyberSecurity", "creation_timestamp": "2026-07-10T00:00:27.833369Z"}]}