{"vulnerability": "CVE-2026-1770", "sightings": [{"uuid": "a99a014c-5277-47f5-934a-180cf68599e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1770", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3ml6uvv4gck2j", "content": "The Crafter CMS Groovy sandbox has been patched three times. Our team went back in anyway and found 14 distinct RCE bypass techniques in v5.0.0.\n\nThe sandbox wasn't broken in one place. It was porous.\nCVE-2026-1770 (PTT-2025-022). Full PoC: pentest-tools.com/research\n#offensivesecurity #pentesting", "creation_timestamp": "2026-05-06T14:09:56.968074Z"}]}