{"vulnerability": "cve-2026-4531", "sightings": [{"uuid": "9a3c8432-5c81-4a7f-a1ba-fbaa44b47d6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45315", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlwxioao4w2c", "content": "\ud83d\udfe0 CVE-2026-45315 - High (8.7)\n\nOpen WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45315/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-16T04:02:15.844965Z"}, {"uuid": "ea0b865c-1ea6-48ba-ae19-86b3cbd27944", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4531", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhmpcdhwyr2n", "content": "", "creation_timestamp": "2026-03-22T04:25:58.562415Z"}, {"uuid": "070babe2-c1d9-4953-8234-04932ccfb97d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45315", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-m8f9-9whg-f4xr", "content": "", "creation_timestamp": "2026-05-09T08:02:50.000000Z"}, {"uuid": "f72060d6-4214-4bf1-accf-7c9a0c7afb9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45310", "type": "published-proof-of-concept", "source": "https://github.com/Hmbown/DeepSeek-TUI/security/advisories/GHSA-96ff-gc8g-wpvg", "content": "", "creation_timestamp": "2026-05-09T04:05:43.000000Z"}, {"uuid": "0d7416e2-68d2-4d06-89a1-b97b325b0652", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45311", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwsaors7c2r", "content": "CVE-2026-45311 - CodeWhale: run_tests Tool Enables RCE via Malicious Repository Without Approval\nCVE ID : CVE-2026-45311\n \n Published : May 28, 2026, 6:16 p.m. | 54\u00a0minutes ago\n \n Description : CodeWhale is a DeepSeek + MiMo coding agent in terminal. From 0.3.0 to 0.8.23, the ...", "creation_timestamp": "2026-05-28T19:51:20.010661Z"}, {"uuid": "1e912f0e-53db-49d2-81d4-4c26dcd5c049", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45311", "type": "published-proof-of-concept", "source": "https://github.com/Hmbown/DeepSeek-TUI/security/advisories/GHSA-wx44-2q6h-j6p8", "content": "", "creation_timestamp": "2026-05-09T04:06:06.000000Z"}, {"uuid": "1ba00956-bdf8-4d1e-9dac-30c7e1a2e06c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45317", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-j6w6-986j-2m2m", "content": "", "creation_timestamp": "2026-05-09T08:03:05.000000Z"}, {"uuid": "15874030-01d2-4d02-a61c-589fc496c45e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45318", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-hcwp-82g6-8wxc", "content": "", "creation_timestamp": "2026-05-09T08:02:58.000000Z"}, {"uuid": "8b97c0cd-cb2f-4e00-a9b7-f972bcb37cee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45316", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-jx2x-j75f-xq3j", "content": "", "creation_timestamp": "2026-05-09T08:02:53.000000Z"}, {"uuid": "30756d56-0920-44fa-9d7e-0b8777411fe3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45314", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-3856-3vxq-m6fc", "content": "", "creation_timestamp": "2026-05-09T08:02:43.000000Z"}, {"uuid": "576c5046-7100-402d-81de-fd3d6b8f6b3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45312", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn4b4d4qhw22", "content": "\ud83d\udd34 CVE-2026-45312 - Critical (9.9)\n\nRAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine. In 0.24.0 and earlier, a J...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45312/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-31T00:00:45.755514Z"}, {"uuid": "858327bd-0d92-4da4-ae48-f996101a586f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45311", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwpgfojvr2c", "content": "\ud83d\udd34 CVE-2026-45311 - Critical (9.6)\n\nCodeWhale is a DeepSeek + MiMo coding agent in terminal. From 0.3.0 to 0.8.23, the run_tests tool...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45311/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T19:00:51.720468Z"}, {"uuid": "b3a6faef-a169-4d4c-80d2-37acd99e2224", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45312", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmyugidqzb2x", "content": "CVE-2026-45312 - RAGFlow: Server-Side Template Injection in Prompt Generator leads to Remote Code Execution\nCVE ID : CVE-2026-45312\n \n Published : May 29, 2026, 1:16 p.m. | 1\u00a0hour, 55\u00a0minutes ago\n \n Description : RAGFlow is an open-source RAG (Retrieval-Augmented Generation) e...", "creation_timestamp": "2026-05-29T15:35:41.613371Z"}]}