{"vulnerability": "cve-2026-48588", "sightings": [{"uuid": "654a793c-a84d-4141-a492-0a5e043da9c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48588", "type": "seen", "source": "https://bsky.app/profile/selfhost.directory/post/3mq2uqb2zhm2c", "content": "\ud83d\ude80 New #release \u00b7 Saleor 3.23.17\n\nWhat's Changed\n\u2022 Upgraded django to v5.2.16 by @NyanKiyoshi in #19438\nFixes:\n\u2022 CVE-2026-48588: Potential exposure of private data via cached Set-C\u2026\n\nCheck and #self-host it \u2192 selfhost.directory/project/saleor#update-3081251\n\n#selfhost #selfhosted #homelab #opensource", "creation_timestamp": "2026-07-07T15:02:03.827675Z"}, {"uuid": "c3cde575-cd2e-4beb-bd63-29d1ee2ca344", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48588", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mq2uvi6mb22w", "content": "Django CVE-2026-48588, CVE-2026-53877, and CVE-2026-53878", "creation_timestamp": "2026-07-07T15:04:59.108278Z"}, {"uuid": "4fe64e82-4f5f-4362-9e47-d7e35299aefa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48588", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq2zl5oqzw2i", "content": "CVE-2026-48588 - Potential exposure of private data via cached Set-Cookie response\nCVE ID : CVE-2026-48588\n \n Published : July 7, 2026, 3:16 p.m. | 31\u00a0minutes ago\n \n Description : An issue was discovered in Django 6.0 before 6.0.7 and 5.2 before 5.2.16.\n`UpdateCacheMiddleware`...", "creation_timestamp": "2026-07-07T16:28:41.366063Z"}]}