{"vulnerability": "cve-2026-1480", "sightings": [{"uuid": "757641cb-3f80-4bf4-a4a7-9756636e6272", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1480", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mdgjyn3sf626", "content": "", "creation_timestamp": "2026-01-27T19:54:19.415901Z"}, {"uuid": "c45e9022-414b-49bf-b2c8-87efd2a6915f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14803", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwyzahxo32k", "content": "CVE-2026-14803: Mojo::JSON versions before 9.47 for Perl allow memory exhaustion via unbounded recursion in the pure-Perl decoder", "creation_timestamp": "2026-07-06T02:08:01.229512Z"}, {"uuid": "1b0661f0-6765-4a14-84ea-a3927b947869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14803", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116870796203021611", "content": "CVE-2026-14803: HIGH severity vuln in Mojo::JSON &lt;9.47 \u2014 pure-Perl decoder allows uncontrolled recursion. Apps may face DoS if Cpanel::JSON::XS isn\u2019t enabled. Install XS module or limit JSON depth. https://radar.offseq.com/threat/cve-2026-14803-cwe-674-uncontrolled-recursion-in-s-622d5e94b9c3bd9b #OffSeq #infosec #Perl #DoS", "creation_timestamp": "2026-07-06T03:00:27.491877Z"}, {"uuid": "371610e0-aa28-4dcc-80dd-07848c173fb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14803", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpx3x2dx3e2v", "content": "Mojo::JSON &lt;9.47 has a HIGH severity recursion flaw. Untrusted deeply nested JSON can cause DoS if Cpanel::JSON::XS is missing or disabled. Install XS or validate input ASAP. https://radar.offseq.com/threat/cve-2026-14803-cwe-674-uncontrolled-recursion-in-s-622d5e94b9c3bd9b #OffSeq #security #Perl", "creation_timestamp": "2026-07-06T03:00:29.588037Z"}, {"uuid": "6f0565cb-3c40-4cd8-b81d-cd5a78c42b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14803", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxa5yhc232r", "content": "CVE-2026-14803 - Mojo::JSON versions before 9.47 for Perl allow memory exhaustion via unbounded recursion in the pure-Perl decoder\nCVE ID : CVE-2026-14803\n \n Published : July 6, 2026, 2:16 a.m. | 1\u00a0hour, 31\u00a0minutes ago\n \n Description : Mojo::JSON versions before 9.47 for Perl ...", "creation_timestamp": "2026-07-06T04:15:56.996707Z"}, {"uuid": "d9315bbe-73fe-4a32-8ed8-9f597d1ef7d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14808", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116871857765386040", "content": "PROG MIS Prog Management System hit with CRITICAL vuln (CVE-2026-14808): unauthenticated attackers can access DB user &amp; password. No patch yet \u2014 limit access &amp; monitor systems. Details: https://radar.offseq.com/threat/cve-2026-14808-cwe-497-exposure-of-sensitive-syste-326a6d8e79a35bf1 #OffSeq #CVE202614808 #Vuln #InfoSec", "creation_timestamp": "2026-07-06T07:30:26.814252Z"}, {"uuid": "3e536d54-a804-49b1-beed-8c4c8e1f9a66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14808", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpxkzs5u6524", "content": "CRITICAL vuln (CVE-2026-14808) in PROG MIS Prog Management System lets remote attackers access DB credentials. No fix yet \u2014 restrict access ASAP. More info: https://radar.offseq.com/threat/cve-2026-14808-cwe-497-exposure-of-sensitive-syste-326a6d8e79a35bf1 #OffSeq #CVE202614808 #Vulnerability", "creation_timestamp": "2026-07-06T07:30:28.182334Z"}, {"uuid": "d469d935-d3a3-472d-aca9-d12295a0cb62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14801", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxmcjr2dc2d", "content": "CVE-2026-14801 - GPAC TeXML File load_text.c txtin_probe_duration divide by zero\nCVE ID : CVE-2026-14801\n \n Published : July 6, 2026, 6:15 a.m. | 1\u00a0hour, 32\u00a0minutes ago\n \n Description : A security vulnerability has been detected in GPAC 26.03-DEV-rev342-g80071f700-master. The ...", "creation_timestamp": "2026-07-06T07:53:14.784750Z"}, {"uuid": "f9292725-9837-4bc8-8971-6923ad829bc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14808", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxndswjh423", "content": "CVE-2026-14808 - PROG MIS\uff5cProg Management System - Exposure of Sensitive Information\nCVE ID : CVE-2026-14808\n \n Published : July 6, 2026, 7:18 a.m. | 29\u00a0minutes ago\n \n Description : Prog\n Management System developed by PROG MIS has a Exposure of Sensitive\n Information vulnerab...", "creation_timestamp": "2026-07-06T08:11:51.392653Z"}, {"uuid": "f58ef7e5-56c3-4e1a-bc65-0bac9d3a4420", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14800", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxmouz3lb2f", "content": "CVE-2026-14800 - imhamzaazam ecommerceFlask cross-site request forgery\nCVE ID : CVE-2026-14800\n \n Published : July 6, 2026, 6 a.m. | 1\u00a0hour, 47\u00a0minutes ago\n \n Description : A weakness has been identified in imhamzaazam ecommerceFlask up to cb7d9e24c30a99379651b7493b32048126ef4...", "creation_timestamp": "2026-07-06T08:00:09.389971Z"}, {"uuid": "496375f0-c543-4359-86d9-d2df2c07fe0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpxmsdqm5f2s", "content": "CVE-2026-14807 - erp app\nThe PROG MIS ERP App stores its login credentials directly in the code, which can be accessed by unauthorized users. This allows them to log in to the app and potentially view\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#erpapp #progmis #CVE #infosec", "creation_timestamp": "2026-07-06T08:02:04.759745Z"}, {"uuid": "5b79df78-c4a5-4be9-acf6-669f00801697", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14808", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpxmsf5dsw2j", "content": "CVE-2026-14808 - prog management system\nThe Prog Management System allows unauthorized access to sensitive database information, including login credentials. This puts the system and its data at risk of unauthorized\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#progmis #CVE #infosec", "creation_timestamp": "2026-07-06T08:02:06.123368Z"}, {"uuid": "ef130ecc-d256-4917-a37d-a93122e32244", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14802", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxmshtck52q", "content": "CVE-2026-14802 - react create-react-app react-dev-utils openBrowser.js startBrowserProcess os command injection\nCVE ID : CVE-2026-14802\n \n Published : July 6, 2026, 6:30 a.m. | 1\u00a0hour, 17\u00a0minutes ago\n \n Description : A vulnerability was detected in react create-react-app up to...", "creation_timestamp": "2026-07-06T08:02:08.775712Z"}, {"uuid": "c93e6ac6-743b-4379-83c9-1eb9c1abade3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxnj6vp2d2n", "content": "CVE-2026-14807 - PROG MIS\uff5cERP App - Use of Hard-coded Credentials\nCVE ID : CVE-2026-14807\n \n Published : July 6, 2026, 7:09 a.m. | 38\u00a0minutes ago\n \n Description : ERP App developed by PROG MIS has a Use of Hard-coded Credentials vulnerability, allowing unauthenticated remote a...", "creation_timestamp": "2026-07-06T08:14:51.301629Z"}, {"uuid": "1d83dbbf-5308-4781-a142-4fc933c41f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116872211939531878", "content": "CVE-2026-14807: CRITICAL hard-coded credentials in PROG MIS ERP App allow unauthenticated remote access to source code &amp; DB creds. No patch available \u2014 restrict access &amp; monitor activity. CVSS 9.3 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERP #infosec", "creation_timestamp": "2026-07-06T09:00:30.113614Z"}, {"uuid": "6d9b8ad3-e8d0-4175-9390-3a0e05cf3251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpxq2tzoht24", "content": "PROG MIS ERP App hit by CRITICAL vuln (CVE-2026-14807): hard-coded creds let attackers access code &amp; DB. No patch \u2014 restrict access, monitor ERP activity. \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERPsecurity", "creation_timestamp": "2026-07-06T09:00:31.800624Z"}, {"uuid": "90750614-6032-45e7-8e69-ca0427fbc141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14809", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxqxvwyzn2j", "content": "CVE-2026-14809 - PROG MIS\uff5cProg Management System - SQL Injection\nCVE ID : CVE-2026-14809\n \n Published : July 6, 2026, 7:21 a.m. | 1\u00a0hour, 52\u00a0minutes ago\n \n Description : Prog Management System developed by PROG MIS has a SQL Injection vulnerability, allowing unauthenticated re...", "creation_timestamp": "2026-07-06T09:16:46.551236Z"}, {"uuid": "c7bf77cd-a524-4447-a166-d1627614239a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-11024-c5c1a-2.html", "content": "", "creation_timestamp": "2026-07-06T09:45:04.255767Z"}, {"uuid": "5fa71ece-ba32-40af-9bc7-4d8905d416b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-14808", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-11026-3df18-2.html", "content": "", "creation_timestamp": "2026-07-06T09:45:06.579129Z"}, {"uuid": "318a1d7d-fda9-40b8-bb4e-6e752ce592a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-14809", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-11026-3df18-2.html", "content": "", "creation_timestamp": "2026-07-06T09:45:09.125914Z"}, {"uuid": "e29d320e-02de-4a6a-b716-974aec17c399", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14803", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq3squycjw2i", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14803 \u0432 Mojo::JSON: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 Perl\n\n\n\nhttps://kripta.biz/posts/69296A4E-C3F8-4376-8548-CFE00FA8BB2D", "creation_timestamp": "2026-07-07T23:59:16.836214Z"}, {"uuid": "a5da45fc-5bf3-464a-933c-67d676b4ead7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14803", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq5j2z3jlo26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14803 \u0432 Mojo::JSON: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 Perl\n\n\n\nhttps://kripta.biz/posts/17F61679-37E3-4DA6-BFD9-F934317E4C5C", "creation_timestamp": "2026-07-08T16:11:18.771726Z"}, {"uuid": "af860b2e-9e8e-4955-a7b9-19779dc15963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14802", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6ewkdnt42a", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14802 \u0432 Create React App: \u0443\u0433\u0440\u043e\u0437\u0430 \u0434\u043b\u044f macOS \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/18F94493-5D68-4060-9DBC-F4FDF548F8AF", "creation_timestamp": "2026-07-09T00:29:53.770134Z"}, {"uuid": "b96104c4-85d6-4047-9717-68f552df4f52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6excboje2a", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14807 \u0432 ERP-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0438 PROG MIS: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438\u0437-\u0437\u0430 \u0436\u0435\u0441\u0442\u043a\u043e \u0437\u0430\u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445\n\n\n\nhttps://kripta.biz/posts/C4CF87B3-585C-4E1E-BB2A-7C18FE5B45AF", "creation_timestamp": "2026-07-09T00:30:19.588146Z"}, {"uuid": "864f201f-c949-43a8-89ca-da26e19b9af5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14808", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6ezbk44o2d", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14808 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f PROG MIS: \u0443\u0433\u0440\u043e\u0437\u0430 \u0440\u0430\u0437\u0433\u043b\u0430\u0448\u0435\u043d\u0438\u044f \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445\n\n\n\nhttps://kripta.biz/posts/830F3D66-0AB0-4FEE-9C5D-C7B2CFE0C649", "creation_timestamp": "2026-07-09T00:31:25.266467Z"}, {"uuid": "ed2929a2-5b38-4ddb-a9c3-27a436226971", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14801", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6ezzhfbn2s", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14801 \u0432 GPAC: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/D33CAC71-C4E3-49B4-812F-FE7D8578ABB8", "creation_timestamp": "2026-07-09T00:31:50.515110Z"}, {"uuid": "926748a9-703f-45db-b3aa-475b58fa672b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14800", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mq6f6orrkj2c", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14800 \u0432 ecommerceFlask: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/CBE7F3B2-B4F4-4E04-988A-ED7F9BCD660B", "creation_timestamp": "2026-07-09T00:34:27.116848Z"}]}