{"vulnerability": "CVE-2026-55791", "sightings": [{"uuid": "61939138-27b0-4234-8da5-054700271747", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-55791", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpmpvmvzr52u", "content": "CVE-2026-55791 - Craft CMS: Blind SSRF and Arbitrary JavaScript Injection via Host Header Poisoning in actionResourceJs\nCVE ID : CVE-2026-55791\n \n Published : July 1, 2026, 11:13 p.m. | 32\u00a0minutes ago\n \n Description : Craft CMS is a content management system (CMS). Versions 4....", "creation_timestamp": "2026-07-01T23:58:19.318393Z"}]}