{"vulnerability": "cve-2026-7891", "sightings": [{"uuid": "9bce82e5-2280-4ec1-a0df-b00076097ec5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-7891", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlceez7izf2i", "content": "CVE-2026-7891 - Mendix Studio Pro Anonymous User Role Inheritance Authorization Bypass\nCVE ID : CVE-2026-7891\n \n Published : May 7, 2026, 9:07 p.m. | 1\u00a0hour, 13\u00a0minutes ago\n \n Description : The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta allows unintended da...", "creation_timestamp": "2026-05-07T23:24:46.566995Z"}, {"uuid": "555d3cba-01cf-4575-b8ba-f1a773a6a580", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-7891", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116536365967570800", "content": "\ud83d\udea8 CVE-2026-7891 (CRITICAL): Insecure inherited permissions in DIVD VerySecureApp let anonymous users read all records. Built with Mendix Studio Pro 11.8.0 Beta \u2014 patch pending. Review anonymous access configs ASAP! https://radar.offseq.com/threat/cve-2026-7891-cwe-277-insecure-inherited-permissio-c2a9d753 #OffSeq #CVE20267891 #Vuln #InfoSec", "creation_timestamp": "2026-05-08T01:30:28.274542Z"}, {"uuid": "f000a8aa-41cb-490c-b325-f6ce637dfec2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-7891", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlclfs2m4v2p", "content": "CRITICAL: CVE-2026-7891 in DIVD VerySecureApp (Mendix Studio Pro 11.8.0 Beta) lets anonymous users access all data. Review and restrict anonymous roles \u2014 patch not yet available. https://radar.offseq.com/threat/cve-2026-7891-cwe-277-insecure-inherited-permissio-c2a9d753 #OffSeq #CVE20267891", "creation_timestamp": "2026-05-08T01:30:29.282097Z"}]}