{"vulnerability": "cve-2026-1145", "sightings": [{"uuid": "e800991a-b5b0-4a45-bd3f-c4eca61f9d9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1145", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mdmr3n7cio22", "content": "", "creation_timestamp": "2026-01-30T07:17:15.476261Z"}, {"uuid": "2d798f4f-8a01-41a7-8d21-7389bcec5768", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1145", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mebuh2tdac2w", "content": "", "creation_timestamp": "2026-02-07T16:43:14.201279Z"}, {"uuid": "4c628e8f-71f1-44bf-863a-d27984d8c15d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-1145", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcrl6jnnwc2v", "content": "", "creation_timestamp": "2026-01-19T11:49:36.316247Z"}, {"uuid": "6a28f8a3-a3c4-4be5-9a56-1f9424316e6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11453", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnodh6oluy2a", "content": "Tiobon Employee Self-Service (7.0 \u2013 7.2) hit by MEDIUM SQL injection (CVE-2026-11453) via 'Keyword' in /Blog/BlogSearch.aspx. No patch \u2014 add WAF/input validation now. Read more: https://radar.offseq.com/threat/cve-2026-11453-sql-injection-in-tiobon-employee-se-1180c656 #OffSeq #SQLInjection #Vuln...", "creation_timestamp": "2026-06-07T04:30:26.815632Z"}, {"uuid": "590e62e8-7620-48bd-be9d-d3c3e0a5d508", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11453", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116706942877312373", "content": "MEDIUM severity: CVE-2026-11453 in Tiobon Employee Self-Service System (v7.0 \u2013 7.2) enables SQL injection via the 'Keyword' param in /Blog/BlogSearch.aspx. No official patch yet \u2014 use WAF/input validation. More: https://radar.offseq.com/threat/cve-2026-11453-sql-injection-in-tiobon-employee-se-1180c656 #OffSeq #SQLInjection #Vuln #Infosec", "creation_timestamp": "2026-06-07T04:30:27.312099Z"}, {"uuid": "e5807eb4-dec7-4e34-b5d4-72472df6db4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11450", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnoeactt5y2u", "content": "CVE-2026-11450 - GL.iNet GL-MT3000 Path Normalization dlopen command injection\nCVE ID : CVE-2026-11450\n \n Published : June 7, 2026, 3:16 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : A vulnerability was detected in GL.iNet GL-MT3000 4.4.5. This affects the function dlopen in ...", "creation_timestamp": "2026-06-07T04:46:29.404446Z"}, {"uuid": "9d2c58d1-3001-4a4a-bad0-34b7dd11e681", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11451", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnoejbd7pt22", "content": "CVE-2026-11451 - GL.iNet GL-MT3000 FTP Protocol glc snprintf command injection\nCVE ID : CVE-2026-11451\n \n Published : June 7, 2026, 4:16 a.m. | 16\u00a0minutes ago\n \n Description : A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snprintf of the file /cgi...", "creation_timestamp": "2026-06-07T04:49:29.376116Z"}, {"uuid": "3b4a18e3-1775-4dfb-836c-97714a18161a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11452", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnofn37ej62d", "content": "CVE-2026-11452 - GL.iNet GL-MT3000 SET_USER_PWD glc FUN_0042e200 command injection\nCVE ID : CVE-2026-11452\n \n Published : June 7, 2026, 4:16 a.m. | 16\u00a0minutes ago\n \n Description : A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_004...", "creation_timestamp": "2026-06-07T05:09:30.846293Z"}, {"uuid": "e0cd72d4-7dcb-4d7a-bdf2-c31081c83321", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11452", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116707297322046281", "content": "\ud83d\udd13 CVE-2026-11452 (MEDIUM): GL.iNet GL-MT3000 routers \u2264 4.4.5 are vulnerable to remote, unauthenticated command injection via /cgi-bin/glc. Patch to v4.8.1 to mitigate. Details: https://radar.offseq.com/threat/cve-2026-11452-command-injection-in-glinet-gl-mt30-7b600ced #OffSeq #Vuln #GLiNet #RouterSecurity", "creation_timestamp": "2026-06-07T06:00:32.652176Z"}, {"uuid": "1acd665a-fce0-4b7e-be91-841e2974e219", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11452", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnoiiejvts2e", "content": "GL.iNet GL-MT3000 routers (fw \u2264 4.4.5) have a MEDIUM command injection flaw. Unauthenticated remote code execution possible \u2014 upgrade to 4.8.1 now! https://radar.offseq.com/threat/cve-2026-11452-command-injection-in-glinet-gl-mt30-7b600ced #OffSeq #GLiNet #Security", "creation_timestamp": "2026-06-07T06:00:34.852356Z"}, {"uuid": "e0c52200-b825-4433-ad11-739c1f39d111", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11451", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116707650683946203", "content": "CVE-2026-11451: MEDIUM severity command injection in GL.iNet GL-MT3000 (v4.4.5). \ud83d\udee1\ufe0f Remote attackers can exploit FTP handler via media_dir. Fixed in 4.8.1 \u2014 update now! https://radar.offseq.com/threat/cve-2026-11451-command-injection-in-glinet-gl-mt30-53c0e750 #OffSeq #Vulnerability #GLiNet #IoTSecurity", "creation_timestamp": "2026-06-07T07:30:25.343615Z"}, {"uuid": "a13c9e78-9446-4580-b051-1943b90f238c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11451", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnonj2m4hu2e", "content": "GL.iNet GL-MT3000 (4.4.5) hit by MEDIUM command injection vulnerability. Patch to 4.8.1 to block remote exploits in FTP handler. Act now! \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-11451-command-injection-in-glinet-gl-mt30-53c0e750 #OffSeq #Vulnerability #IoTSecurity", "creation_timestamp": "2026-06-07T07:30:26.679762Z"}, {"uuid": "887f8769-4ee2-409d-bc83-f124840dd6fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11457", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnosazipcy2l", "content": "CVE-2026-11457 - erzhongxmu JeeWMS JimuReport test-connection Endpoint testConnection injection\nCVE ID : CVE-2026-11457\n \n Published : June 7, 2026, 7:45 a.m. | 48\u00a0minutes ago\n \n Description : A security flaw has been discovered in erzhongxmu JeeWMS up to 141740afb2ba14d441c82...", "creation_timestamp": "2026-06-07T08:55:25.102075Z"}, {"uuid": "dfd75d15-f997-44e4-9db3-e743ba56e361", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11455", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnosjxyvqf24", "content": "CVE-2026-11455 - FoundationAgents MetaGPT common.py check_cmd_exists command injection\nCVE ID : CVE-2026-11455\n \n Published : June 7, 2026, 7 a.m. | 1\u00a0hour, 33\u00a0minutes ago\n \n Description : A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this...", "creation_timestamp": "2026-06-07T09:02:32.558354Z"}, {"uuid": "63fc2504-d9fb-4e9f-b7ae-c197c5b067d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11458", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnosjyzka32k", "content": "erzhongxmu JeeWMS faces a MEDIUM info disclosure vuln (public exploit out, no patch). Restrict /base-boot/actuator now & monitor for fixes. Vendor unresponsive. https://radar.offseq.com/threat/cve-2026-11458-information-disclosure-in-erzhongxm-1e095538 #OffSeq #Vulnerability #Security", "creation_timestamp": "2026-06-07T09:02:33.381146Z"}, {"uuid": "539ba7a0-bded-4df7-834a-86553058d0fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11458", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116708004613032981", "content": "\ud83d\udd0e CVE-2026-11458 (MEDIUM): Info disclosure in erzhongxmu JeeWMS via /base-boot/actuator. Public exploit exists, no patch or vendor response. Restrict endpoint access & monitor for updates. https://radar.offseq.com/threat/cve-2026-11458-information-disclosure-in-erzhongxm-1e095538 #OffSeq #Vuln #InfoSec", "creation_timestamp": "2026-06-07T09:02:35.039311Z"}, {"uuid": "156a538d-5252-456e-afd9-90f164cdca7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11450", "type": "seen", "source": "https://bsky.app/profile/intelnightowl.bsky.social/post/3mnoxdygsli2l", "content": "CVE\u20112026\u201111450 found on GL\u2011MT3000 routers from Taiwanese maker GL\u2011Inet can enable remote code execution, raising concerns for network security across global infrastructures. #Taiwan #CyberAttack #DataBreach https://www.redpacketsecurity.com/cve-alert-cve-2026-11450-gl-inet-gl-mt3000/", "creation_timestamp": "2026-06-07T10:26:33.722684Z"}, {"uuid": "712c6f53-0b98-4e75-ae46-c43e070770f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11450", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mnozfse2si2b", "content": "GL.iNet GL-MT3000 4.4.5\u3067\u30b3\u30de\u30f3\u30c9\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u304c\u767a\u898b\u3055\u308c\u307e\u3057\u305f\u3002\u30ea\u30e2\u30fc\u30c8\u304b\u3089\u306e\u653b\u6483\u3067\u3001\u4e0d\u6b63\u306a\u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u306e\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u30d0\u30fc\u30b8\u30e7\u30f34.7\u3078\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3067\u89e3\u6d88\u3055\u2026\nCVE-2026-11450 CVSS 7.3 | HIGH", "creation_timestamp": "2026-06-07T11:03:21.585593Z"}, {"uuid": "2f348924-3050-45b8-b426-2f3acb362f3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11459", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnp74o6wu624", "content": "CVE-2026-11459 - SecureAge CatchPulse IOCTL saappctl.sys information disclosure\nCVE ID : CVE-2026-11459\n \n Published : June 7, 2026, 10:16 a.m. | 2\u00a0hours, 17\u00a0minutes ago\n \n Description : A security vulnerability has been detected in SecureAge CatchPulse up to 10.9.1. Impacted ...", "creation_timestamp": "2026-06-07T12:45:37.618509Z"}]}