{"vulnerability": "CVE-2026-46697", "sightings": [{"uuid": "2de0619e-a83f-448d-9ea6-cb2ce63e0572", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46697", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnzvx3zfmm2n", "content": "\ud83d\udfe0 CVE-2026-46697 - High (7.5)\n\nFediverse Embeds embeds fediverse posts on WordPress sites. Prior to version 1.5.8, Fediverse Emb...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-46697/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T19:00:52.723998Z"}, {"uuid": "cda9a8c1-0d55-4c3c-9ac1-400731900828", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46697", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mo2ct62zrp2z", "content": "Fediverse Embeds v1.5.8\u672a\u5bfe\u5fdc\u7248\u306f\u3001\u8a8d\u8a3c\u306a\u3057\u3067\u5916\u90e8URL\u3078\u30a2\u30af\u30bb\u30b9\u3057\u3001\u305d\u306e\u5185\u5bb9\u3092\u8fd4\u5374\u3059\u308bSSRF\u8106\u5f31\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u3053\u308c\u306b\u3088\u308a\u3001\u653b\u6483\u8005\u306fWordPress\u30b5\u30a4\u30c8\u3092\u4ecb\u3057\u3066\u4efb\u610f\u306e\u5916\u90e8\u2026\nCVE-2026-46697 CVSS 7.5 | HIGH", "creation_timestamp": "2026-06-11T22:51:10.625484Z"}, {"uuid": "9edee08e-2808-4608-81f3-fbc80f6ff48a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46697", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mo2gpbkmvr22", "content": "CVE-2026-46697. CVSS 7.5. Fediverse Embeds plugin leaks wp-config, database dumps, API keys. Anyone. No auth. No allowlist on URL forwarding.\n\nDisable it now. No patch available yet.\n\nScan your WordPress site: pulse-wp.com\n#WordPress #SSRF #CyberSecurity", "creation_timestamp": "2026-06-12T00:00:35.569546Z"}]}