{"vulnerability": "cve-2026-4995", "sightings": [{"uuid": "89985b9f-d6fe-4c92-aa7a-dc825af32a2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49955", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnuqb4o7py2v", "content": "CVE-2026-49955 - Hermes WebUI\nCVE ID : CVE-2026-49955\n \n Published : June 9, 2026, 4:05 p.m. | 31\u00a0minutes ago\n \n Description : Hermes WebUI before version 0.51.270 contains a resource exhaustion vulnerability that allows unauthenticated remote attackers to degrade service avai...", "creation_timestamp": "2026-06-09T17:35:53.074462Z"}, {"uuid": "fa7d6474-22cc-4abc-bf75-9798e94d6d9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49952", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3moe4bl2zhh2j", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-49952\n\nCVSS 9.1/10\n\n\ud83d\udccb WHAT IT IS:\nDiscuz! X5.0 releases 20260320 through 20260501 contains an authentication bypass vulnerability that allows unauthenticated remote attackers to gain unauthorized access to database backup and restore functionality by exploiting a shared cr", "creation_timestamp": "2026-06-15T20:20:35.420220Z"}, {"uuid": "d9951a54-d7cf-4cc3-a694-a60d8c8edff4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49954", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe5jfvgvz2a", "content": "CVE-2026-49954 - Discuz! X5.0 Local File Inclusion via enable_disable.php Plugin Directory\nCVE ID : CVE-2026-49954\n \n Published : June 15, 2026, 6:50 p.m. | 52\u00a0minutes ago\n \n Description : Discuz! X5.0 releases 20260320 through 20260501 contain a local file inclusion vulnerabi...", "creation_timestamp": "2026-06-15T20:42:52.208803Z"}, {"uuid": "4607a7ac-6853-4c8a-914b-dde002107dec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49952", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe5sedrap22", "content": "CVE-2026-49952 - Discuz! X5.0 Authentication Bypass via dbbak.php Encryption Oracle\nCVE ID : CVE-2026-49952\n \n Published : June 15, 2026, 6:43 p.m. | 58\u00a0minutes ago\n \n Description : Discuz! X5.0 releases 20260320 through 20260501 contains an authentication bypass vulnerability...", "creation_timestamp": "2026-06-15T20:47:52.368807Z"}, {"uuid": "3e4214c3-4c1f-4e56-ba6f-898271516e81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49953", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe63cswrv2m", "content": "CVE-2026-49953 - Discuz! X5.0 CAPTCHA Bypass via Predictable Character Set\nCVE ID : CVE-2026-49953\n \n Published : June 15, 2026, 6:45 p.m. | 56\u00a0minutes ago\n \n Description : Discuz! X5.0 releases 20260320 through 20260501 contains a CAPTCHA bypass vulnerability that allows unau...", "creation_timestamp": "2026-06-15T20:52:52.786515Z"}, {"uuid": "598c5cb3-de82-463f-9a44-34c26952e1c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49952", "type": "seen", "source": "https://t.me/GithubRedTeam/89268", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-49952\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a passwa11\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-17 09:05:56\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nChaining Security Bugs in Discuz! X5.0: from Race Condition to Pre-Auth RCE\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-13T22:00:24.670996Z"}, {"uuid": "99ae0d42-a2f0-47c5-b17f-70ec508e9ca0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49952", "type": "seen", "source": "https://t.me/GithubRedTeam/89268", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-49952\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a passwa11\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-17 09:05:56\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nChaining Security Bugs in Discuz! X5.0: from Race Condition to Pre-Auth RCE\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-14T00:00:40.136529Z"}, {"uuid": "e95563d3-f748-4b7e-be00-c71d2c5e75b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49952", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/89268", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-49952\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a passwa11\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-17 09:05:56\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nChaining Security Bugs in Discuz! X5.0: from Race Condition to Pre-Auth RCE\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-15T00:00:08.095425Z"}]}