{"vulnerability": "cve-2026-54415", "sightings": [{"uuid": "9adde229-2833-4dd0-950c-55cdc71b8a7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54415", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moiv74u5gc2t", "content": "CVE-2026-54415 - Broken Access Control in Azuriom CMS Server Routes Allows Account Takeover\nCVE ID : CVE-2026-54415\n \n Published : June 17, 2026, 2:04 p.m. | 3\u00a0hours, 4\u00a0minutes ago\n \n Description : Missing Authorization in the server management routes (routes/admin.php) in Azu...", "creation_timestamp": "2026-06-17T17:57:16.146591Z"}, {"uuid": "f618af83-32a7-4b1a-9a7d-7cd07e59172b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54415", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3moks6clrea23", "content": "CVE-2026-54415 - Missing Authorization in Azuriom CMS. Authenticated admin can create server tokens, take over user accounts via API. CVSS 8.1. No patch yet. Disable AzLink endpoints until update. #CVE #Azuriom #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-54415/", "creation_timestamp": "2026-06-18T12:08:27.593530Z"}]}