{"vulnerability": "cve-2026-4562", "sightings": [{"uuid": "df9296ae-e681-4d36-b9d1-9d8d8ee8e01c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45628", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn3gevmjrn2w", "content": "\ud83d\udd34 CVE-2026-45628 - Critical (9.6)\n\nDokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.2 and earlier, Dokploy con...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45628/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T16:02:16.517896Z"}, {"uuid": "c615231e-5778-4d87-a70d-550089e2fe44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45625", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn2bffor7p2e", "content": "\ud83d\udd34 CVE-2026-45625 - Critical (9.9)\n\nArcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1....\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45625/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T05:00:24.809141Z"}, {"uuid": "adae85e2-4b7d-494b-b3c9-996daabf2684", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45627", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn2bfmxvw623", "content": "\ud83d\udfe0 CVE-2026-45627 - High (8.2)\n\nArcane is an interface for managing Docker containers, images, networks, and volumes. Prior to 1....\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45627/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T05:00:32.126844Z"}, {"uuid": "8bc6274d-8078-4a1a-a166-1ac4cad985e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45627", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzdzd6pls2x", "content": "CVE-2026-45627 - Arcane: Unauthenticated reflected XSS via SVG color parameter in /api/app-images/logo enables admin account takeover\nCVE ID : CVE-2026-45627\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Arcane is an interface for managing Docker con...", "creation_timestamp": "2026-05-29T20:14:39.851143Z"}, {"uuid": "e56aab72-ddf8-49dd-b4ae-8cf4485a8b75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45625", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzekopabw2s", "content": "CVE-2026-45625 - Arcane: Missing admin authorization on git repository endpoints allows non-admin users to exfiltrate stored Git credentials and tamper with GitOps configs\nCVE ID : CVE-2026-45625\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Arcane i...", "creation_timestamp": "2026-05-29T20:24:22.311192Z"}, {"uuid": "75939e3c-16e7-4964-842f-1d232d801a26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45629", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzew26v5d2h", "content": "CVE-2026-45629 - Dokploy: Authenticated Remote Code Execution via Command Injection in /listen-deployment WebSocket Endpoint\nCVE ID : CVE-2026-45629\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Dokploy is a free, self-hostable Platform as a Service ...", "creation_timestamp": "2026-05-29T20:30:43.561202Z"}, {"uuid": "773bd8de-0435-480a-99c9-a49253351e47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45628", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzgr7rw7j2d", "content": "CVE-2026-45628 - Dokploy: Command Injection via Unescaped Branch Fields in Deployment Pipeline\nCVE ID : CVE-2026-45628\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.2 and earlier,...", "creation_timestamp": "2026-05-29T21:03:55.779046Z"}, {"uuid": "582d2156-f039-4eab-b403-32843551c4d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45629", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn3jp7itoj25", "content": "\ud83d\udd34 CVE-2026-45629 - Critical (9.9)\n\nDokploy is a free, self-hostable Platform as a Service (PaaS). In 0.28.8 and earlier, authenticat...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45629/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T17:01:43.346512Z"}]}