{"vulnerability": "cve-2026-5972", "sightings": [{"uuid": "d1c7c642-6332-4c12-9491-1295508b5e80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5972", "type": "seen", "source": "Telegram/B-z3crZ1dI3tmPIxruR2FuLMmThruFg0zQ194epA7uIe11s", "content": "", "creation_timestamp": "2026-04-09T21:23:00.000000Z"}, {"uuid": "ce5044e4-67f9-464f-b7a6-5408edbb4114", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59723", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq6ii3a55f27", "content": "CVE-2026-59723 - Cline: Cross-Origin WebSocket Hijacking in Cline Hub Dashboard (`/browser` endpoint)\nCVE ID : CVE-2026-59723\n \n Published : July 8, 2026, 11:16 p.m. | 31\u00a0minutes ago\n \n Description : Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistan...", "creation_timestamp": "2026-07-09T01:33:23.282489Z"}, {"uuid": "8e82814e-29b6-44c6-9051-8d221f9ddeb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59723", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mq6qq2mnan2c", "content": "\ud83d\udfe0 CVE-2026-59723 - High (8.8)\n\nCline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Prior to 3.0.30, ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-59723/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-09T04:01:01.580501Z"}, {"uuid": "b130dd8d-dae8-4f54-bd62-abf56deb5e84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59726", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqab2vcb5g2b", "content": "CVE-2026-59726 - ruflo\nAn older version of Ruflo's default setup allowed anyone on the network to access sensitive data without a password. This could let them read important keys and interfere with Ruflo's\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#ruflo #ruvnet #CVE #infosec", "creation_timestamp": "2026-07-09T18:26:05.207420Z"}, {"uuid": "e2d883b8-0343-4544-9580-4d45cf3eaaee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59726", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqae3c4udu2x", "content": "CVE-2026-59726 - Ruflo: Unauthenticated RCE in MCP bridge default docker-compose deployment\nCVE ID : CVE-2026-59726\n \n Published : July 9, 2026, 6:16 p.m. | 15\u00a0minutes ago\n \n Description : Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's defau...", "creation_timestamp": "2026-07-09T19:19:58.969925Z"}, {"uuid": "641c0cde-1a04-430a-a317-7fb5fde35082", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59721", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mqbspbvraw27", "content": "CVE-2026-59721 - OS Command Injection in Hoppscotch. CVSS 7.2. Admin can execute arbitrary commands as root via SMTP config. Upgrade to 2026.6.0 immediately. #CVE #Hoppscotch #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-59721/", "creation_timestamp": "2026-07-10T09:14:21.905824Z"}]}