{"vulnerability": "cve-2026-46364", "sightings": [{"uuid": "372d37e0-657f-440a-9875-c01fb5c52d68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-46364", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlwk4jqvtu23", "content": "\ud83d\udea8 CRITICAL SQL injection in phpMyFAQ <4.1.2: Unauthenticated attackers can extract credentials via /api/captcha. Restrict access & apply WAF rules now. Patch status unconfirmed. https://radar.offseq.com/threat/cve-2026-46364-improper-neutralization-of-special--9adafcbf #OffSeq #SQLInjection #phpM...", "creation_timestamp": "2026-05-16T00:00:39.862782Z"}, {"uuid": "867c5a4d-e4d2-41b3-92a8-347eaf0ff0e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-46364", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-289f-fq7w-6q2w", "content": "", "creation_timestamp": "2026-05-06T20:49:15.000000Z"}]}