{"vulnerability": "CVE-2026-59800", "sightings": [{"uuid": "25f089cd-7682-48ff-8cc5-54f27013ca49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59800", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq3dwalhqt22", "content": "CVE-2026-59800 - 9Router\nCVE ID : CVE-2026-59800\n \n Published : July 7, 2026, 6:19 p.m. | 55\u00a0minutes ago\n \n Description : 9Router before 0.4.44 contains an OS command injection vulnerability in the unauthenticated POST /api/tunnel/tailscale-install endpoint (this route is not ...", "creation_timestamp": "2026-07-07T19:33:50.831568Z"}, {"uuid": "9f3b34d5-5fbc-4d65-94fc-4e7aa9cdcc1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-59800", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-g6g7-pvmx-m74p", "content": "", "creation_timestamp": "2026-07-07T20:35:03.190565Z"}, {"uuid": "ded08e9f-2dae-4163-bef1-4dd4738abbab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59800", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3ic5zo3y2v", "content": "CVE-2026-59800 - 9router\nAn attacker can execute arbitrary code with root privileges on your system. This can happen if you're using the 9router package and it's running as root. To fix this, update to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#9router #decolua #npm #CVE #infosec", "creation_timestamp": "2026-07-07T20:52:05.573398Z"}]}