{"vulnerability": "CVE-2026-4426", "sightings": [{"uuid": "bfbaf61d-fe8e-435a-a8a4-f33d8582603e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44264", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlbthoa76b2o", "content": "CVE-2026-44264 - Weblate is vulnerable to XSS via crafted Markdown\nCVE ID : CVE-2026-44264\n \n Published : May 7, 2026, 3:16 p.m. | 1\u00a0hour, 9\u00a0minutes ago\n \n Description : Weblate is a web based localization tool. Prior to version 5.17.1, the Markdown renderer used in user comme...", "creation_timestamp": "2026-05-07T18:22:02.126242Z"}, {"uuid": "2fe2020f-2e57-4f4e-bc71-16783ba03add", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44263", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlbr5wilyq2n", "content": "CVE-2026-44263 - Weblate: Private Translation Enumeration via Screenshot API\nCVE ID : CVE-2026-44263\n \n Published : May 7, 2026, 3:16 p.m. | 1\u00a0hour, 9\u00a0minutes ago\n \n Description : Weblate is a web based localization tool. Prior to version 5.17.1, the screenshots, tasks, and co...", "creation_timestamp": "2026-05-07T17:40:47.496420Z"}, {"uuid": "53046973-578c-43e8-b8a2-3f7267ff17e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4426", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhgkqupyvg2e", "content": "", "creation_timestamp": "2026-03-19T17:48:41.996405Z"}, {"uuid": "bde002cd-efc9-40ab-aaf7-4a4e1dfd875d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44262", "type": "seen", "source": "https://t.me/GithubRedTeam/83199", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-44262\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a joshuavanderpoll\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Blade\n\u2b50 Star\u6570\u91cf\uff1a 1  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-07 10:55:25\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nUnauthenticated RCE in dedoc/scramble \u2014 PoC, Nmap NSE & Nuclei template.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-07T11:00:04.000000Z"}, {"uuid": "a8bf8b7c-589a-4e0d-9ef0-eba799ca3763", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44262", "type": "seen", "source": "Telegram/N3SJRV4ZtVW52SnI4hPtvo0ahEWVD2vwvltAM5Jrkt0P_ak", "content": "", "creation_timestamp": "2026-05-07T15:00:15.000000Z"}, {"uuid": "35a86e67-56c3-44b8-be4e-09c62eb1a425", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44262", "type": "seen", "source": "Telegram/O_e3myBcoh_AaGdxUcA5YqeGGADBaBeF3XGiX3aOj54Bo8U", "content": "", "creation_timestamp": "2026-05-07T15:00:07.000000Z"}]}