{"vulnerability": "cve-2026-6382", "sightings": [{"uuid": "70384f9e-f761-4e44-8ae6-d7566277f250", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6382", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxmljfg6c2n", "content": "CVE-2026-6382 - Multiple elFinder Plugins - Authenticated OS Command Injection\nCVE ID : CVE-2026-6382\n \n Published : July 6, 2026, 6 a.m. | 1\u00a0hour, 48\u00a0minutes ago\n \n Description : The FileOrganizer WordPress plugin before 1.1.9, Advanced File Manager WordPress plugin before 5....", "creation_timestamp": "2026-07-06T07:58:15.828589Z"}, {"uuid": "8d0a08a6-4d87-4366-8928-96bf3573a000", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6382", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpybhx2eh42x", "content": "CVE-2026-6382\nSeveral popular WordPress plugins, including FileOrganizer, Advanced File Manager, File Manager Pro, and File Manager, contain a security flaw that allows attackers to execute system commands on the server. This\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-06T14:12:04.448239Z"}, {"uuid": "472ee335-7bf7-45f3-a519-2622901c871e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6382", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mpyo7u5r5j2x", "content": "CVE-2026-6382. FileOrganizer &amp; clones. CVSS 9.1. Shell command injection. Authenticated users execute code, read wp-config, dump databases. No patch yet. Disable now. Scan: pulse-wp.com\n#WordPress #CVE #CyberSecurity", "creation_timestamp": "2026-07-06T18:00:11.471568Z"}]}