{"vulnerability": "cve-2026-4522", "sightings": [{"uuid": "33007962-d1d6-43dd-8cb8-b76fb29e9e2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45223", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlm2wduquj2k", "content": "\ud83d\udfe0 CVE-2026-45223 - High (8.8)\n\nCrabbox before 0.9.0 contains an authentication bypass vulnerability in the coordinator user-toke...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45223/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T20:02:09.629006Z"}, {"uuid": "c0f32d02-5727-447d-a3a9-1e38c7c58e02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45223", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlm4jgz6l62e", "content": "CVE-2026-45223 - Crabbox\nCVE ID : CVE-2026-45223\n \n Published : May 11, 2026, 7:16 p.m. | 1\u00a0hour, 9\u00a0minutes ago\n \n Description : Crabbox before 0.9.0 contains an authentication bypass vulnerability in the coordinator user-token verification path where the verifyUserToken() fun...", "creation_timestamp": "2026-05-11T20:30:50.952748Z"}, {"uuid": "e1df590d-b090-44a6-bb0f-0cdea8f0c13d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45227", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlpdjs5yyz2n", "content": "\ud83d\udfe0 CVE-2026-45227 - High (8.8)\n\nHeym before 0.0.21 contains a sandbox escape vulnerability in the custom Python tool executor tha...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45227/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-13T03:14:11.366480Z"}, {"uuid": "ed14ca95-970c-4a81-8067-0fcb070c98a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45225", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlpfcs6lej2z", "content": "\ud83d\udfe0 CVE-2026-45225 - High (7.6)\n\nHeym before 0.0.21 contains a path traversal vulnerability in the file upload endpoint that allow...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45225/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-13T03:46:03.306080Z"}, {"uuid": "2e0da98e-60ad-4bbc-be5b-91556878a9eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45229", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlriscywqf2i", "content": "CVE-2026-45229 - Quark Drive\nCVE ID : CVE-2026-45229\n \n Published : May 13, 2026, 9:16 p.m. | 14\u00a0minutes ago\n \n Description : Quark Drive before 0.8.5 contains a mass assignment vulnerability in the POST /update endpoint that allows authenticated attackers to overwrite adminis...", "creation_timestamp": "2026-05-13T23:53:43.829594Z"}, {"uuid": "a3d555da-dd8e-4269-bd05-862f6d2d58e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45228", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlrn4aysf72e", "content": "CVE-2026-45228 - Quark Drive\nCVE ID : CVE-2026-45228\n \n Published : May 13, 2026, 9:16 p.m. | 14\u00a0minutes ago\n \n Description : Quark Drive before 0.8.5 contains a stored cross-site scripting vulnerability in the System Configuration page where the template renders push_config k...", "creation_timestamp": "2026-05-14T01:10:52.519366Z"}]}