{"vulnerability": "cve-2026-12512", "sightings": [{"uuid": "7a6ffd05-32a3-4bcc-a208-56df2b6a8b6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12512", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqobw65kbh2w", "content": "CVE-2026-12512 - Quotes Llama\nCVE ID : CVE-2026-12512\n \n Published : July 15, 2026, 6:16 a.m. | 1\u00a0hour, 15\u00a0minutes ago\n \n Description : The Quotes llama WordPress plugin before 3.1.6 does not properly sanitize and escape a user-supplied parameter before using it in a SQL query...", "creation_timestamp": "2026-07-15T08:18:36.385681Z"}, {"uuid": "d4efd975-4924-45b6-92a3-c8dcdc569db9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12512", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqoocffj5p2e", "content": "CVE-2026-12512. CVSS 8.6. Quotes llama plugin leaks password hashes, database credentials, everything. Any visitor. No auth needed.\n\nNo patch available. Disable it now.\n\nScan your WordPress site: pulse-wp.com\n#WordPress #SQLi #CyberSecurity", "creation_timestamp": "2026-07-15T12:00:10.899667Z"}, {"uuid": "a290f058-eebd-4cfc-8646-735a219fadfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12512", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3mqoqr3pzos2b", "content": "\ud83d\udc1b VULNERABILITIES CVE Notify: \ud83d\udea8 [CVE-2026-12512](https://wpscan.com/vulnerability/39d038f6-f009-4274-a8a7-9d7c2597ec85/)\nThe Quot...\nhttps://wpscan.com/vulnerability/39d038f6-f009-4274-a8a7-9d7c2597ec85/ #ZeroDay #PatchManagement #Vulnerability", "creation_timestamp": "2026-07-15T12:44:11.751317Z"}]}