{"vulnerability": "cve-2026-4896", "sightings": [{"uuid": "8ac8f40f-5e07-4763-84f3-8c822e18b01a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4896", "type": "seen", "source": "Telegram/NNGt-8v_mBW7KxwLZ9AfIWR01sI3i4upqW8rgqGTzB2SyL8", "content": "", "creation_timestamp": "2026-04-04T09:15:29.000000Z"}, {"uuid": "8c721149-0329-42e5-bb27-2acc2defce66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4896", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3minsbjw6nt2j", "content": "", "creation_timestamp": "2026-04-04T08:17:05.722575Z"}, {"uuid": "42979676-fc38-462e-a90d-aa746c0bf90e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4896", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3minsfvopfy2t", "content": "", "creation_timestamp": "2026-04-04T08:19:31.183700Z"}, {"uuid": "a45caedf-d58d-42b7-a3bf-2da36083daf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4896", "type": "seen", "source": "https://gist.github.com/ichintu/fe03294d8c001a0d8df6420779acc3d2", "content": "", "creation_timestamp": "2026-04-04T12:00:18.000000Z"}, {"uuid": "649bd034-9db4-411b-bb25-41af835b1b90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4896", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mj5qmp3mpz2t", "content": "", "creation_timestamp": "2026-04-10T16:30:07.051156Z"}, {"uuid": "a313811b-6a1c-45b7-b328-4cb09efe2170", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48962", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116644657711662061", "content": "\u26a0\ufe0f HIGH severity: CVE-2026-48962 in PMQS IO::Compress (Perl <2.220) enables eval injection via crafted glob strings. Arbitrary Perl code may execute with process privileges. Restrict untrusted input & monitor for patches. https://radar.offseq.com/threat/cve-2026-48962-cwe-95-improper-neutralization-of-d-a4f0eb17 #OffSeq #Vuln #Perl #Infosec", "creation_timestamp": "2026-05-27T04:30:28.090137Z"}, {"uuid": "b8ccdc29-0b96-41c5-83d8-f1ab5dc4f442", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48962", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmsod6gi4p22", "content": "HIGH severity alert: Eval injection in PMQS IO::Compress (<2.220) lets attackers run arbitrary Perl code via crafted output globs. Restrict to trusted input, patch when available. https://radar.offseq.com/threat/cve-2026-48962-cwe-95-improper-neutralization-of-d-a4f0eb17 #OffSeq #Vulnerability #Perl", "creation_timestamp": "2026-05-27T04:30:31.157720Z"}, {"uuid": "f24ad49d-9d8e-4199-9120-544a010d3643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48961", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmspttjznl2z", "content": "CVE-2026-48961: IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetails CLI tool that crashes with undefined subroutine on Info-ZIP Unix Extra Field with 8-byte UID or GID", "creation_timestamp": "2026-05-27T04:57:44.535832Z"}, {"uuid": "83de3b61-251d-4e35-bbc6-b079591ba3b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48962", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmsq4sqpjn2s", "content": "CVE-2026-48962: IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-controlled output glob", "creation_timestamp": "2026-05-27T05:02:43.394229Z"}, {"uuid": "d0c31ed9-4830-48bc-b3d1-2dc56a3c9811", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48962", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmsqdoedpx2i", "content": "CVE-2026-48962 - IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-controlled output glob\nCVE ID : CVE-2026-48962\n \n Published : May 27, 2026, 4:16 a.m. | 15\u00a0minutes ago\n \n Description : IO::Compress versions before 2.22...", "creation_timestamp": "2026-05-27T05:06:33.783160Z"}, {"uuid": "3a08e6cd-15c0-4c83-af96-cb5dae637c7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48961", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmsr4ju5ia2i", "content": "CVE-2026-48961 - IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetails CLI tool that crashes with undefined subroutine on Info-ZIP Unix Extra Field with 8-byte UID or GID\nCVE ID : CVE-2026-48961\n \n Published : May 27, 2026, 4:16 a.m. | 15\u00a0minutes ago\n \n Desc...", "creation_timestamp": "2026-05-27T05:20:28.047089Z"}]}