{"vulnerability": "CVE-2026-12582", "sightings": [{"uuid": "2f8c7d94-756d-41be-bdaf-d8a03fa461a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12582", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116911494012539173", "content": "CVE-2026-12582: HIGH severity SQL injection in Library Management System plugin v3.5 for WordPress. Unauthenticated attackers can extract sensitive DB data. No official fix yet \u2014 restrict use &amp; monitor logs. https://radar.offseq.com/threat/cve-2026-12582-cwe-89-sql-injection-in-library-man-58d0848d2e854832 #OffSeq #WordPress #Infosec", "creation_timestamp": "2026-07-13T07:30:26.837230Z"}, {"uuid": "539b9cf8-d7a1-4670-a751-49889a9f3940", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12582", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqj6cbiqal2d", "content": "SQL injection (CVE-2026-12582) in Library Management System plugin v3.5 (HIGH) lets unauthenticated attackers steal sensitive data. Restrict plugin use &amp; watch for suspicious activity. https://radar.offseq.com/threat/cve-2026-12582-cwe-89-sql-injection-in-library-man-58d0848d2e854832 #OffSeq #Wor...", "creation_timestamp": "2026-07-13T07:30:28.848452Z"}, {"uuid": "e539f9c5-67c3-4eaa-bdba-de298bba6eda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12582", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqj6pwb4zr22", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-12582 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Library Management System \u0434\u043b\u044f WordPress: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/F55727B7-0C8A-4A5B-9BD3-C8D557E02AA6", "creation_timestamp": "2026-07-13T07:38:06.488378Z"}, {"uuid": "af3c061e-bbda-48bc-ac7b-4c7b951d7d30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12582", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqkvlzkiil22", "content": "CVE-2026-12582. CVSS 8.6. Library Management System plugin leaks password hashes and database credentials via SQL injection. No auth needed. Any visitor executes it. No patch available \u2014 disable the plugin now. Scan your WordPress site: pulse-wp.com\n#WordPress #SQLi #CyberSecurity", "creation_timestamp": "2026-07-14T00:00:12.795592Z"}, {"uuid": "b8ec84d5-d36a-49bd-9d82-38d1ce8361d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12582", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqlalbf6pv26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-12582 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Library Management System \u0434\u043b\u044f WordPress: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/5B03882E-1602-4687-BC5E-9004D5760E4C", "creation_timestamp": "2026-07-14T03:16:37.157310Z"}]}