{"vulnerability": "cve-2026-1156", "sightings": [{"uuid": "fb58add7-7cfd-4319-934f-67040e3fb61a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1156", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcrvbl5jv52w", "content": "", "creation_timestamp": "2026-01-19T14:50:17.206795Z"}, {"uuid": "4fbcd6ea-ca57-44d2-b010-0fb8e2182d47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1156", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcs7fsm5my2k", "content": "", "creation_timestamp": "2026-01-19T17:51:35.663299Z"}, {"uuid": "ec2e2b4d-5f07-4f3b-8ff9-f5d852136514", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11569", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnrq5vv63p23", "content": "CVE-2026-11569 - Quay: quay: stored xss via filedrop svg upload\nCVE ID : CVE-2026-11569\n \n Published : June 8, 2026, 12:16 p.m. | 16\u00a0minutes ago\n \n Description : A flaw was found in Quay. The filedrop endpoint accepts any mime type without validation, allowing an authenticated...", "creation_timestamp": "2026-06-08T12:55:52.439385Z"}, {"uuid": "5f135046-4e0c-4be1-a00e-0a98ab4be39c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11561", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnzftyxy5k2a", "content": "CVE-2026-11561 - SSTI in Soagen Informatics' Apinizer\nCVE ID : CVE-2026-11561\n \n Published : June 11, 2026, 12:28 p.m. | 51\u00a0minutes ago\n \n Description : Improper neutralization of special elements used in an expression language statement ('expression language injection') vulne...", "creation_timestamp": "2026-06-11T14:12:40.430352Z"}, {"uuid": "27c492a2-5446-4801-892e-5a5ab9fd9ea6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11561", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mobvkrzl6323", "content": "\ud83d\udea8  ALERT: CVE-2026-11561\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nImproper neutralization of special elements used in an expression language statement ('expression language injection') vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Apinizer allows Code Injection.\n\nThis issue affect", "creation_timestamp": "2026-06-14T23:15:08.762888Z"}, {"uuid": "a644733b-211e-4aac-a75d-57b9b5324dd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11562", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mplau54uab2k", "content": "CVE-2026-11562 - WS Form LITE\nCVE ID : CVE-2026-11562\n \n Published : 1 Jul 2026, 6 a.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : The WS Form LITE WordPress plugin before 1.11.8 does not have a capability check on one of its settings-update actions, allowing authenticated user...", "creation_timestamp": "2026-07-01T09:56:23.085406Z"}, {"uuid": "c8af3891-a4c3-4f57-8288-71cac152462d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11568", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mplcipx3vb27", "content": "CVE-2026-11568 - Product Configurator for WooCommerce\nCVE ID : CVE-2026-11568\n \n Published : 1 Jul 2026, 6 a.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or post-status ch...", "creation_timestamp": "2026-07-01T10:25:48.099542Z"}]}