{"vulnerability": "cve-2026-5684", "sightings": [{"uuid": "46e7f5c9-d09b-472f-8e80-96c0737e3005", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5684", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3miufd3cc6e2q", "content": "", "creation_timestamp": "2026-04-06T23:13:55.783968Z"}, {"uuid": "ab5781bf-d09a-45df-8f3c-e4e073068ae1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5684", "type": "seen", "source": "Telegram/F-tbnQCu7KGoJ0u4OEM4TknejxA1jNnRqA-1uSHs9aPRtPw", "content": "", "creation_timestamp": "2026-04-06T23:22:19.000000Z"}, {"uuid": "28d8da79-456c-4c7d-82b3-d0fcb2e25932", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5684", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mks3pqug3g2q", "content": "\ud83d\udccc CVE-2026-5684 - A vulnerability was determined in Tenda CX12L 16.03.53.12. Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcp... https://www.cyberhub.blog/cves/CVE-2026-5684", "creation_timestamp": "2026-05-01T12:07:07.343249Z"}, {"uuid": "7dbdf07c-c130-49a2-9eb2-d936d35e0676", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mpoj3e3m3z26", "content": "\ud83d\udfe0 CVE-2026-56841 - High (8.8)\n\nA malicious actor with access to the network and low privileges could exploit an authenticated SQ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-56841/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-02T17:01:35.347018Z"}, {"uuid": "bbff32c0-ded5-4197-8b1f-8acbc978d94d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56842", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mpoj4mzudb2v", "content": "\ud83d\udfe0 CVE-2026-56842 - High (7.5)\n\nA malicious actor with access to the network and under certain conditions could exploit an Incorr...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-56842/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-02T17:02:18.017018Z"}, {"uuid": "6cdc9bdb-6601-4c84-a634-cc6945e06afe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpoofozn5v27", "content": "CVE-2026-56841 - UniFi Protect SQL Injection Privilege Escalation\nCVE ID : CVE-2026-56841\n \n Published : July 2, 2026, 2:50 p.m. | 1\u00a0hour, 19\u00a0minutes ago\n \n Description : A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injecti...", "creation_timestamp": "2026-07-02T18:36:50.155025Z"}, {"uuid": "76cc59c8-ab84-47a9-a050-323d1332900d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56842", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpooxqxrlq2z", "content": "CVE-2026-56842 - UniFi Network Application Incorrect Authorization Privilege Escalation\nCVE ID : CVE-2026-56842\n \n Published : July 2, 2026, 2:50 p.m. | 1\u00a0hour, 19\u00a0minutes ago\n \n Description : A malicious actor with access to the network and under certain conditions could expl...", "creation_timestamp": "2026-07-02T18:46:56.153879Z"}, {"uuid": "4530c8d4-81fc-4e24-bc5d-6ae06e39e1ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mppzbwdiof2b", "content": "\u0423\u0433\u0440\u043e\u0437\u0430 CVE-2026-56841: \u043a\u0430\u043a \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0432\u0430\u0448\u0435\u0439 \u0441\u0435\u0442\u0438\n\n\n\nhttps://kripta.biz/posts/17F474C5-06BA-4F56-BB96-AB32908906B6", "creation_timestamp": "2026-07-03T07:24:14.382192Z"}, {"uuid": "ea1d7233-7a25-480d-8906-1dd1c2c22483", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56842", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mppzfqwf3z26", "content": "\u0423\u0433\u0440\u043e\u0437\u0430 CVE-2026-56842: \u043a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c \u0441\u0432\u043e\u044e \u0441\u0435\u0442\u044c \u043e\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/12E1A70A-4613-4C9D-93E7-E557E22E2E2C", "creation_timestamp": "2026-07-03T07:26:23.201018Z"}, {"uuid": "6e4069ce-74ff-4fdd-b780-b9b9169d0eb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56842", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq4kghlsi2n", "content": "\u0423\u0433\u0440\u043e\u0437\u0430 CVE-2026-56842: \u043a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c \u0441\u0432\u043e\u044e \u0441\u0435\u0442\u044c \u043e\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/2AB2804B-762E-4E0E-8ED0-077DBAB439ED", "creation_timestamp": "2026-07-03T08:22:41.150389Z"}, {"uuid": "47cd571f-e099-49e4-8da8-9a02d72eb871", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq5iwktn327", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56841: \u0443\u0433\u0440\u043e\u0437\u0430 \u0434\u043b\u044f \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/B52B39E3-A391-4F44-AB13-2C854CDE34B0", "creation_timestamp": "2026-07-03T08:39:44.760732Z"}, {"uuid": "c0459647-8e61-4010-af76-f7014454b4fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpzrsr2fwx2s", "content": "\ud83d\udccc CVE-2026-56841 - A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Appl... https://www.cyberhub.blog/cves/CVE-2026-56841", "creation_timestamp": "2026-07-07T04:37:06.999275Z"}, {"uuid": "45d40069-3c0b-4486-8301-1a179be30514", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-56843", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116881766886443952", "content": "CVE-2026-56843 (CRITICAL, CVSS 9.9): WebPros Plesk &lt;18.0.78.4 has insufficient auth in XML-RPC API, letting low-privileged users access other tenants\u2019 cleartext FTP creds &amp; run code as them. Restrict API access &amp; monitor. https://radar.offseq.com/threat/cve-2026-56843-cwe-522-insufficiently-protected-cr-45d7ae62ed3d3640 #OffSeq #Infosec #Plesk", "creation_timestamp": "2026-07-08T01:30:26.980630Z"}, {"uuid": "3fddd886-4f25-442d-bfff-bad950d2ddf7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-56843", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mq3xtwsr2j2i", "content": "WebPros Plesk &lt;18.0.78.4: CRITICAL (CVSS 9.9) vuln lets low-privileged users access other tenants\u2019 FTP creds &amp; execute code as them. Restrict XML-RPC API, monitor activity. Patch status pending. https://radar.offseq.com/threat/cve-2026-56843-cwe-522-insufficiently-protected-cr-45d7ae62ed3d3640 #O...", "creation_timestamp": "2026-07-08T01:30:28.957691Z"}, {"uuid": "80fc8369-ed23-4638-9a48-7e77307f3098", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56843", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3ywy72aw2r", "content": "CVE-2026-56843\nA security issue in Plesk's XML-RPC API allows low-privileged users to see details of domains they don't own. This could lead to unauthorized access to sensitive information, such as FTP credentials, which\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-08T01:50:31.653088Z"}, {"uuid": "00f7b647-988a-4341-82f8-12648eecc216", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56843", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq4633ovna2x", "content": "CVE-2026-56843 - WebPros Plesk XML-RPC API Incorrect Authorization Vulnerability\nCVE ID : CVE-2026-56843\n \n Published : July 8, 2026, 1:16 a.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 allows a low-p...", "creation_timestamp": "2026-07-08T03:21:50.884349Z"}, {"uuid": "d3933c0f-e8bf-4784-8e88-77e605a469a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-56842", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/ebad18a5-251f-49a4-b877-c63995fd13a6", "content": "", "creation_timestamp": "2026-07-08T11:01:21.496106Z"}, {"uuid": "2cce530c-1bd9-46b3-85e0-d81192559325", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/ebad18a5-251f-49a4-b877-c63995fd13a6", "content": "", "creation_timestamp": "2026-07-08T11:01:21.496106Z"}, {"uuid": "379c89cd-fe3a-4eb6-a57b-e376721d86a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56843", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdgm4qywn2y", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56843 \u0432 Plesk: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/C1C6A056-9397-43D2-B21B-998CA62192F4", "creation_timestamp": "2026-07-11T00:43:11.247362Z"}]}