{"vulnerability": "CVE-2026-11474", "sightings": [{"uuid": "cdeb1507-fa54-4eee-b43d-5b2a09aae4a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11474", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnqvh526vt2j", "content": "CVE-2026-11474 - Kushan2k student-management-system Registration Endpoint RegisterService.php unrestricted upload\nCVE ID : CVE-2026-11474\n \n Published : June 8, 2026, 1:16 a.m. | 1\u00a0hour, 27\u00a0minutes ago\n \n Description : A security flaw has been discovered in Kushan2k student-ma...", "creation_timestamp": "2026-06-08T04:57:51.472064Z"}, {"uuid": "d2b30fcc-063f-4439-a294-949ef55787b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-11474", "type": "seen", "source": "https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-11474", "content": "", "creation_timestamp": "2026-06-07T16:16:23.000000Z"}, {"uuid": "6b945ef3-80ea-4a9c-b924-c729cb749de4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11474", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnqjubp7pt2l", "content": "\u26a0\ufe0f MEDIUM severity: Kushan2k student-management-system faces an unrestricted upload vulnerability. Exploit is public \u2014 review upload permissions now as no fix is available. https://radar.offseq.com/threat/cve-2026-11474-unrestricted-upload-in-kushan2k-stu-0ecbd0bf #OffSeq #Vulnerability #Security...", "creation_timestamp": "2026-06-08T01:30:27.909564Z"}, {"uuid": "33f95e76-20e2-4136-a9d2-3dcb8da7489f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11474", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116711897483236687", "content": "CVE-2026-11474: MEDIUM severity unrestricted upload in Kushan2k student-management-system (up to f16a4ceaddd6729c4b306ed4641cda3176c1ef2a). Public exploit out, no patch yet. Review upload controls ASAP. https://radar.offseq.com/threat/cve-2026-11474-unrestricted-upload-in-kushan2k-stu-0ecbd0bf #OffSeq #Vuln #InfoSec #Kushan2k", "creation_timestamp": "2026-06-08T01:30:41.694950Z"}]}