{"vulnerability": "cve-2026-56271", "sightings": [{"uuid": "0acbb9a3-7d56-4ba8-9f77-70938c87ba78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56271", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqh6qvmwwo2y", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56271 \u0432 Flowise: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/CC8F73D0-809A-4082-AF00-34E8DF898442", "creation_timestamp": "2026-07-12T12:33:19.767402Z"}, {"uuid": "c6f165cc-2945-45ec-aac7-627c7a0c21cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56271", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqh7hpkdws2f", "content": "CVE-2026-56271 - flowise\nFlowise versions 3.0.13 and earlier use weak default secrets in its JWT authentication system. This allows attackers to create fake authentication tokens, potentially impersonating\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#flowise #CVE #infosec", "creation_timestamp": "2026-07-12T12:46:05.288356Z"}, {"uuid": "50a58aa2-fe29-4106-8cfb-fbdb7c321937", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56271", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqh7wndsdd2w", "content": "CVE-2026-56271 - Flowise - Weak Default JWT Secrets in Authentication Middleware\nCVE ID : CVE-2026-56271\n \n Published : July 12, 2026, 12:16 p.m. | 16\u00a0minutes ago\n \n Description : Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses weak hardcoded default JWT secre...", "creation_timestamp": "2026-07-12T12:54:26.276247Z"}, {"uuid": "33d5488c-b96e-4ffd-8de5-92a19cc9a533", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56271", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqhacgw2kj2c", "content": "\ud83d\udd34 CVE-2026-56271 - Critical (9.8)\n\nFlowise before 3.1.0 (affected versions 3.0.13 and earlier) uses weak hardcoded default JWT secre...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-56271/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T13:01:03.545973Z"}, {"uuid": "32110028-52fd-48a3-a687-956e95b732ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56271", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqivyyahck2h", "content": "CVE-2026-56271 - flowise\nFlowise has weak default JWT secrets that can be used by attackers to impersonate any user, potentially leading to complete authentication bypass and unauthorized access to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#flowise #henryheng #npm #CVE #infosec", "creation_timestamp": "2026-07-13T05:02:06.599023Z"}]}