{"vulnerability": "cve-2026-12511", "sightings": [{"uuid": "e058a1a1-5ba5-49b5-997e-6c6252e86d0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12511", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqlvdarid52e", "content": "CVE-2026-12511 - AI Engine\nCVE ID : CVE-2026-12511\n \n Published : 14. Juli 2026 06:17 | 1\u00a0Stunde, 13\u00a0Minuten ago\n \n Description : The AI Engine WordPress plugin before 3.5.5 does not sanitize a user-supplied filename before using it to write a downloaded file, allowing authent...", "creation_timestamp": "2026-07-14T09:27:56.510879Z"}, {"uuid": "8e1bc5b3-dbf7-4386-9f8e-a12bb44ca99c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12511", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqng3cfyza2o", "content": "CVE-2026-12511. CVSS 8.1. AI Engine plugin lets editors write files anywhere on your server via path traversal. wp-config.php. .htaccess. Shell upload. Game over. No patch available. Disable AI Engine now. Scan your WordPress site: pulse-wp.com\n#WordPress #LFI #CyberSecurity", "creation_timestamp": "2026-07-15T00:00:32.315293Z"}]}