{"vulnerability": "cve-2026-6187", "sightings": [{"uuid": "8186d3d4-a0e5-4f63-8260-7d52572d44b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6187", "type": "seen", "source": "Telegram/_TS_ErhlT2llNPXhNLnZaIvAkEA2gU1lz2cwoIEiu2S6bYw", "content": "", "creation_timestamp": "2026-04-13T18:01:52.000000Z"}, {"uuid": "02aba733-fdd5-4297-9ff0-1cdcdacd4126", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61870", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqeyuxuuok2l", "content": "CVE-2026-61870 - ImageMagick before 7.1.2-26 Memory Leak via VIFF Encoder\nCVE ID : CVE-2026-61870\n \n Published : July 11, 2026, 2:16 p.m. | 1\u00a0hour, 8\u00a0minutes ago\n \n Description : ImageMagick before 7.1.2-26 contains a memory leak vulnerability in the VIFF encoder when memory a...", "creation_timestamp": "2026-07-11T15:42:54.292836Z"}, {"uuid": "b4854d25-53b9-4c58-9c14-714771099ef4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61876", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqh6fkg4lk2e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61876 \u0432 LuCI: \u0440\u0438\u0441\u043a\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/AEF34173-ABD7-41C1-A44D-39C2BD0AD815", "creation_timestamp": "2026-07-12T12:26:59.221298Z"}, {"uuid": "9d75eeb7-7367-491b-af98-4935dfc64acf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61875", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqh6nlrwqv2w", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61875 \u0432 luci-app-upnp: \u0443\u0433\u0440\u043e\u0437\u0430 XSS \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/CA8F1090-1DF8-44C9-AC18-C3D44C8CC738", "creation_timestamp": "2026-07-12T12:31:28.857677Z"}, {"uuid": "1e14ed13-3127-4195-96cd-3768492590ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61874", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqh6sys2qc2e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61874 \u0432 FileBrowser: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/FE5EF828-2C9C-4783-BE09-1DDBCDED988F", "creation_timestamp": "2026-07-12T12:34:30.269840Z"}, {"uuid": "a99c3f83-36bc-4f94-b201-803144bc5c1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61876", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqh7hqwuyt2t", "content": "CVE-2026-61876 - luci\nAn attacker on the same network can inject malicious code into LuCI's DHCP lease pages, potentially allowing them to take control of an administrator's browser. This vulnerability affects\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#luci #openwrt #CVE #infosec", "creation_timestamp": "2026-07-12T12:46:06.467960Z"}, {"uuid": "8ea01428-6ef3-4039-99c9-e86f1de22bfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61875", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqhabhbgbv2r", "content": "\ud83d\udfe0 CVE-2026-61875 - High (8.8)\n\nluci-app-upnp contains a stored cross-site scripting vulnerability that allows unauthenticated LA...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-61875/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T13:00:29.465684Z"}, {"uuid": "98be33ec-09c0-4a6f-9010-04a83b77f3b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61876", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqhabnqobz2k", "content": "\ud83d\udfe0 CVE-2026-61876 - High (8.8)\n\nLuCI versions fail to properly encode DHCPv6 lease hostnames before rendering in status tables, a...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-61876/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T13:00:35.941323Z"}, {"uuid": "8d25d237-0ff3-489a-b9b8-47dc1a03555e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61876", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqhawwrokk27", "content": "CVE-2026-61876 - LuCI DHCPv6 Lease Hostname Stored Cross-Site Scripting\nCVE ID : CVE-2026-61876\n \n Published : July 12, 2026, 12:16 p.m. | 16\u00a0minutes ago\n \n Description : LuCI versions fail to properly encode DHCPv6 lease hostnames before rendering in status tables, allowing a...", "creation_timestamp": "2026-07-12T13:12:29.728444Z"}, {"uuid": "6d4c57c4-703b-40e7-a3d3-711807b4464a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61875", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqhb7vcc472x", "content": "CVE-2026-61875 - luci-app-upnp Stored XSS via UPnP Port Mapping Description\nCVE ID : CVE-2026-61875\n \n Published : July 12, 2026, 12:16 p.m. | 16\u00a0minutes ago\n \n Description : luci-app-upnp contains a stored cross-site scripting vulnerability that allows unauthenticated LAN cli...", "creation_timestamp": "2026-07-12T13:17:30.235451Z"}, {"uuid": "d11300f6-18d7-442f-aed9-a2353209c517", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-61876", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116907247335811041", "content": "OpenWrt LuCI hit by CRITICAL XSS (CVE-2026-61876, CVSS 9.4): DHCPv6 hostnames not properly encoded, enabling adjacent attackers to inject scripts into admin browsers. Restrict interface access, monitor advisories. https://radar.offseq.com/threat/cve-2026-61876-improper-neutralization-of-input-du-90cbeb597700a4fd #OffSeq #OpenWrt #XSS #Infosec", "creation_timestamp": "2026-07-12T13:30:27.742420Z"}, {"uuid": "cda4d073-60c0-42a6-b711-b655d497ebc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-61876", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqhbx44fvl2j", "content": "CRITICAL XSS in OpenWrt LuCI (CVE-2026-61876): Attackers on your network can inject scripts via DHCPv6 hostnames, targeting admin browsers. Restrict access &amp; check advisories for patches. https://radar.offseq.com/threat/cve-2026-61876-improper-neutralization-of-input-du-90cbeb597700a4fd #OffSeq #...", "creation_timestamp": "2026-07-12T13:30:29.533687Z"}, {"uuid": "7cbe9be7-a0d6-451f-bd04-afeb50058387", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61876", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mqhv5ijuan2b", "content": "OpenWrt's LuCI web panel has a stored XSS flaw (CVE-2026-61876, CVSS 8.8): a device on the network can hide a script in its DHCPv6 hostname that runs in the admin's browser.\n\nAffects OpenWrt routers serving untrusted devices.\n\nFix: update LuCI to the patched build.", "creation_timestamp": "2026-07-12T19:14:05.048595Z"}, {"uuid": "ef769c4a-3ee9-4d6e-89eb-4ee2c6490c00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61874", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqkyxtlm5b2w", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61874 \u0432 FileBrowser: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/5ED69543-D28D-4272-9B89-CBAA6DF714B5", "creation_timestamp": "2026-07-14T01:00:29.203035Z"}, {"uuid": "cc78840c-461d-49f9-a0b9-8889471c9803", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61873", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqp4jgjut22x", "content": "CVE-2026-61873 - Grav before 9.1.8 Arbitrary File Write via Twig-Processed Filename\nCVE ID : CVE-2026-61873\n \n Published : July 15, 2026, 12:18 p.m. | 2\u00a0hours, 16\u00a0minutes ago\n \n Description : Grav before 9.1.8 contains an arbitrary file write vulnerability in the Form plugin's...", "creation_timestamp": "2026-07-15T16:14:39.505205Z"}, {"uuid": "43cc1a5e-b9fd-4e8e-9f5b-307c764ea966", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61874", "type": "seen", "source": "https://bsky.app/profile/khesefxyz.bsky.social/post/3mqqs6dskuc23", "content": "\u05d7\u05e9\u05d9\u05e4\u05d4: \u05e4\u05d2\u05d9\u05e2\u05d4 \u05e7\u05e9\u05d4 \u05d1\u05e4\u05e8\u05d5\u05d8\u05d5\u05e7\u05d5\u05dc FileBrowser - \u05de\u05d4 \u05e6\u05e8\u05d9\u05da \u05dc\u05d3\u05e2\u05ea \u05e2\u05dc CVE-2026-61874\n\n\n\nhttps://khesef.xyz/posts/D0A762A3-1DFD-49D3-B395-FE6A0152434A", "creation_timestamp": "2026-07-16T08:14:49.352194Z"}]}