{"vulnerability": "cve-2026-4477", "sightings": [{"uuid": "9ad3dcf7-f8a4-4e22-a586-2d7022fa74b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44775", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmrowzbcq62e", "content": "CVE-2026-44775 - Kavita: No authentication at /api/Reader/image\nCVE ID : CVE-2026-44775\n \n Published : 26 mai 2026 17:27 | 35\u00a0minutes ago\n \n Description : Kavita is a cross platform reading server. Prior to 0.9.0, the ReaderController.GetImage endpoint is decorated with [Allow...", "creation_timestamp": "2026-05-26T19:08:55.497077Z"}, {"uuid": "f1b84284-0566-457b-8d62-135756e0792e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44774", "type": "seen", "source": "https://bsky.app/profile/dbt3.ch/post/3mlow66ezsf2e", "content": "Traefik v2.11.46 patches CVE-2026-44774 and fixes cross-provider namespace handling in Kubernetes. Read the migration guide before upgrading. #selfhosted #homelab\n\nhttps://github.com/traefik/traefik/releases/tag/v2.11.46", "creation_timestamp": "2026-05-12T23:15:01.081981Z"}, {"uuid": "72b0e3fe-e5e6-4d1b-93a2-10933441e4da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44776", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmrpifmdkq2k", "content": "CVE-2026-44776 - Kavita: IDOR in /api/Download/*\nCVE ID : CVE-2026-44776\n \n Published : 26 mai 2026 17:29 | 32\u00a0minutes ago\n \n Description : Kavita is a cross platform reading server. Prior to 0.9.0, the download, size-check, and chapter metadata endpoints do not enforce librar...", "creation_timestamp": "2026-05-26T19:18:38.971847Z"}, {"uuid": "9ef7fcdc-d4c5-4648-9958-095151d20c59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44774", "type": "published-proof-of-concept", "source": "https://github.com/traefik/traefik/security/advisories/GHSA-96qj-4jj5-wcjc", "content": "", "creation_timestamp": "2026-05-11T15:10:49.000000Z"}]}