{"vulnerability": "CVE-2026-4798", "sightings": [{"uuid": "2dc451fc-6761-4bed-9816-f81f09ed5aea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4798", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlqcpedfqw2p", "content": "CVE-2026-4798 - Avada Builder\nCVE ID : CVE-2026-4798\n \n Published : May 13, 2026, 9:26 a.m. | 1\u00a0hour, 4\u00a0minutes ago\n \n Description : The Avada Builder plugin for WordPress is vulnerable to time-based SQL Injection via the \u2018product_order\u2019 parameter in all versions up to, and in...", "creation_timestamp": "2026-05-13T12:32:06.326341Z"}, {"uuid": "f4328894-34a9-4e0b-b0cc-d31a09a64649", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4798", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlqpcm7xqe2z", "content": "\ud83d\udfe0 CVE-2026-4798 - High (7.5)\n\nThe Avada Builder plugin for WordPress is vulnerable to time-based SQL Injection via the \u2018produ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-4798/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-13T16:19:46.901808Z"}, {"uuid": "d4f4182e-0bfe-4277-a285-76e3a9b2b0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4798", "type": "seen", "source": "https://bsky.app/profile/donwebmedia.bsky.social/post/3mm5m3wgr5v2h", "content": "CVE-2026-4798: Avada Builder expone 1 mill\u00f3n de sitios\n\nCVE-2026-4798 expone 1 mill\u00f3n de sitios WordPress a robo de credenciales v\u00eda Avada Builder. \u00bfTu sitio us\u00f3 WooCommerce alguna vez? Verific\u00e1 ahora y actua...\n\n#cve20264798 #avadabuilder #sqlinjection #wordfence #wordpressvulnerabilidades", "creation_timestamp": "2026-05-18T19:24:44.321095Z"}, {"uuid": "b77a7117-f1ac-451a-acd3-cc10bad013d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4798", "type": "seen", "source": "https://bsky.app/profile/donwebmedia.bsky.social/post/3mlrlmhfveb2a", "content": "Avada Builder: 2 vulnerabilidades cr\u00edticas en 1M de sitios\n\n\u00bfTu sitio tiene Avada Builder sin actualizar? Las CVE-2026-4798 y CVE-2026-4782 exponen 1 mill\u00f3n de WordPress a SQL injection y robo de wp-config. Actua...\n\n#avadabuilder #cve20264798 #inyecci\u00f3nsql #wordpressseguridad #fusionbuilder", "creation_timestamp": "2026-05-14T00:44:08.625327Z"}]}