{"vulnerability": "CVE-2026-12046", "sightings": [{"uuid": "f95090a2-a054-4dc1-b013-a570e13403a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12046", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3momht2bobx2r", "content": "CVE-2026-12046 - pgAdmin 4: Unauthenticated pickle deserialization in SQL Editor close / update_connection routes enables remote code execution\nCVE ID : CVE-2026-12046\n \n Published : June 18, 2026, 11:37 p.m. | 3\u00a0hours, 31\u00a0minutes ago\n \n Description : Two state-mutating endpoi...", "creation_timestamp": "2026-06-19T04:08:31.066775Z"}, {"uuid": "ac2f7f76-d661-4878-ba72-472ad74c011b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12046", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mourylwhc522", "content": "\ud83d\udea8  ALERT: CVE-2026-12046\n\nCVSS 9.5/10\n\n\ud83d\udccb WHAT IT IS:\npgAdmin 4 server-mode vulnerability allowing unauthenticated remote code execution. An attacker can exploit this flaw to execute arbitrary code on the server running pgAdmin 4 without requiring any authentication credentials.\n\n\ud83c\udfaf WHO'S AFFECTED:\n  ", "creation_timestamp": "2026-06-22T11:31:52.212251Z"}, {"uuid": "fe9bd3ae-f022-4bcb-a578-5a18b2269962", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-12046", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/8cdd16ce-588c-4c14-94dc-9e607f48b9c7", "content": "", "creation_timestamp": "2026-06-23T10:07:30.837016Z"}]}