{"vulnerability": "cve-2026-5985", "sightings": [{"uuid": "6052b9a8-3fee-49fc-8c27-da747cf8c9cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5985", "type": "seen", "source": "Telegram/r2aLRB54Ih_OSR-P7tVQ1PquPIQ5c0jGeGUejuuUUcNPCN8", "content": "", "creation_timestamp": "2026-04-10T01:19:02.000000Z"}, {"uuid": "4b417c9e-e7f6-4607-9f4f-f2fd74a2499f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59857", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqatocvbfn27", "content": "CVE-2026-59857 - Vim: Out-of-bounds Write in SAL Soundfolding\nCVE ID : CVE-2026-59857\n \n Published : July 9, 2026, 11:17 p.m. | 31\u00a0minutes ago\n \n Description : Vim is an open source, command line text editor. Prior to 9.2.0725, the single-byte branch of spell_soundfold_sal() i...", "creation_timestamp": "2026-07-09T23:59:05.868507Z"}, {"uuid": "81b433e2-7e2a-4151-a67f-e2de2701c1d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59853", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqau6gfmft2g", "content": "CVE-2026-59853 - SiYuan: Publish-mode Reader can exfiltrate private saved-search Criteria via /api/storage/getCriteria (missing publish-access filter)\nCVE ID : CVE-2026-59853\n \n Published : July 9, 2026, 11:17 p.m. | 31\u00a0minutes ago\n \n Description : SiYuan is an open-source per...", "creation_timestamp": "2026-07-10T00:08:06.609136Z"}, {"uuid": "1894325d-b152-438b-a721-0374f5f36c76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59855", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqauvhctur2x", "content": "CVE-2026-59855 - SiYuan: Store XSS To Rce via Asset.render\nCVE ID : CVE-2026-59855\n \n Published : July 9, 2026, 11:17 p.m. | 31\u00a0minutes ago\n \n Description : SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, Asset.render in app/src/asset/index.ts in...", "creation_timestamp": "2026-07-10T00:20:56.487206Z"}, {"uuid": "1b944923-0379-4d88-95a8-fd8ae40fcdfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqav54u5hg2k", "content": "CVE-2026-59856 - Vim: Arbitrary Code Execution via PHP Omni-Completion\nCVE ID : CVE-2026-59856\n \n Published : July 9, 2026, 11:17 p.m. | 31\u00a0minutes ago\n \n Description : Vim is an open source, command line text editor. Prior to 9.2.0736, the PHP omni-completion script in runtim...", "creation_timestamp": "2026-07-10T00:25:14.142942Z"}, {"uuid": "2b757a77-9efd-4ad1-a572-f479c2957f5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59854", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqavozsbt62e", "content": "CVE-2026-59854 - SiYuan: Incomplete IsSensitivePath denylist: globalCopyFiles reads home-dir credential dotfiles into the workspace\nCVE ID : CVE-2026-59854\n \n Published : July 9, 2026, 11:17 p.m. | 31\u00a0minutes ago\n \n Description : SiYuan is an open-source personal knowledge man...", "creation_timestamp": "2026-07-10T00:35:14.873104Z"}, {"uuid": "f662e045-2c8f-4fae-bf0f-5c26ac63abbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59858", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqavxyae4f2l", "content": "CVE-2026-59858 - Vim: Arbitrary Code Execution via C Omni-Completion\nCVE ID : CVE-2026-59858\n \n Published : July 9, 2026, 11:17 p.m. | 31\u00a0minutes ago\n \n Description : Vim is an open source, command line text editor. Prior to 9.2.0735, the C omni-completion script in runtime/au...", "creation_timestamp": "2026-07-10T00:40:15.316795Z"}, {"uuid": "0e7bc6e5-2c77-4913-ad4e-3261e8f96602", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59858", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcwikfmx22a", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59858 \u0432 Vim: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/D3659A3F-4D67-47DC-B0BC-F3754D2BCECA", "creation_timestamp": "2026-07-10T19:54:50.716957Z"}, {"uuid": "b96113dd-bb88-41ed-a328-f4b0f65eb3ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59857", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcwjkgqfw22", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59857 \u0432 Vim: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/2E4A295F-5725-4B08-A32C-A8041C98DE16", "creation_timestamp": "2026-07-10T19:55:24.139268Z"}, {"uuid": "eff81726-f42e-45de-bb8e-4e0e200cd0dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59857", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdjcxo7nw2x", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59857 \u0432 Vim: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/9C6D2DAA-1898-4D32-8994-46549821C8AC", "creation_timestamp": "2026-07-11T01:31:44.182957Z"}, {"uuid": "08c879fc-d6eb-4f88-bc56-f008aaa43626", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59858", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdk37vaeu2e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59858 \u0432 Vim: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/B9D1D91A-5870-4956-9C7F-7776E620EFC4", "creation_timestamp": "2026-07-11T01:45:18.284516Z"}, {"uuid": "5e7883ad-b192-4845-b154-9c57eb1f0216", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59858", "type": "seen", "source": "https://bsky.app/profile/qiancx.bsky.social/post/3mqdk37zwkw26", "content": "Vim 9.2.0735 \u7248\u672c\u66f4\u65b0:CVE-2026-59858 \u6f0f\u6d1e\u8be6\u89e3\u4e0e\u5b89\u5168\u9632\u62a4\u6307\u5357\n\n\n\nhttps://qian.cx/posts/CE2FA6D0-881A-4E48-A38C-993DD9FC01BF", "creation_timestamp": "2026-07-11T01:45:18.803325Z"}, {"uuid": "df89fc74-3f65-4692-8d97-18119c3afa70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqeqzu455g27", "content": "CVE-2026-59856: Vim's New Vulnerability Exposes PHP Users to Code Execution Risks #CVE2026 #VimVulnerability #PHP", "creation_timestamp": "2026-07-11T13:22:28.579944Z"}, {"uuid": "d15b52e5-b5b6-4eb8-a3fc-4cc4ae4b040a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqer3neum627", "content": "CVE-2026-59856 Exposes Vim Users to Arbitrary Code Execution Risks #Vim #CVE2026 #CyberSecurity", "creation_timestamp": "2026-07-11T13:23:28.794713Z"}, {"uuid": "4cd36548-7ab7-4c34-b318-d6fce28fb3e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqer3pbj5t2h", "content": "CVE-2026-59856 Exposes Vim Users to Arbitrary Code Execution Risks #CVE202659856 #Vim #CyberSecurity", "creation_timestamp": "2026-07-11T13:23:30.751211Z"}, {"uuid": "e78793dc-90be-4260-abc8-4fd4e0e6c52b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqer3qzcay2c", "content": "CVE-2026-59856: Vim's Code Execution Flaw Exposes Widespread Developer Risks #CVE2026 #Vim #CyberSecurity", "creation_timestamp": "2026-07-11T13:23:32.621918Z"}, {"uuid": "d9d598ce-6f81-433d-b4a6-dab5ffd409df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mqer3s6y5m23", "content": "CVE-2026-59856: Vim's Code Execution Flaw Exposes Widespread Developer Risks #CVE2026 #Vim #PotatoSecurity", "creation_timestamp": "2026-07-11T13:23:33.230792Z"}, {"uuid": "5b943f48-5ddc-436e-92d7-0e0542aa67b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqer3t22hg27", "content": "CVE-2026-59856: The Uncertain Risks of Vim's PHP Omni-Completion Vulnerability #CVE2026 #Vim #SecurityFlaw", "creation_timestamp": "2026-07-11T13:23:34.850174Z"}, {"uuid": "600c5ce9-6179-40c5-ac37-c3ac9f1b85e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59856", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqer3uwsic2p", "content": "CVE-2026-59856: Triage Over Exploitation \u2014 A Vital Urgency? #CyberSecurity #VimVulnerabilities #CVE2026", "creation_timestamp": "2026-07-11T13:23:36.849487Z"}, {"uuid": "9fb1b5f5-dca0-40f8-aebf-e0030dcd5de1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59858", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqn4fhwbfo2d", "content": "\ud83d\udccc CVE-2026-59858 - Vim is an open source, command line text editor. Prior to 9.2.0735, the C omni-completion script in runtime/autoload/ccomplete.vim interpolates the ty... https://www.cyberhub.blog/cves/CVE-2026-59858", "creation_timestamp": "2026-07-14T21:07:07.269472Z"}]}