{"vulnerability": "cve-2026-14352", "sightings": [{"uuid": "69007138-dc2b-4aac-ad24-e97ec7f9d87d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14352", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mppw4orvsr2t", "content": "CVE-2026-14352 - AR for WooCommerce\nCVE ID : CVE-2026-14352\n \n Published : July 3, 2026, 4:30 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : The AR for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'fil...", "creation_timestamp": "2026-07-03T06:27:37.487086Z"}, {"uuid": "2bda026a-e308-4407-9952-7cd6d4f4113e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14352", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mpqtnpaiqq2v", "content": "CVE-2026-14352 ar-for-woocommerce (CVSS Score 7.5) \n\n#WordPress plugin #vulnerability #cybersecurity #wordpressfirewall #hacking #wpsecurity #atomicedge #cybersecurity #malware #vulnerabilityresearch #cve #redteam #proofofconcept", "creation_timestamp": "2026-07-03T15:16:07.036122Z"}, {"uuid": "36369446-31d7-4cda-83fa-409d6ccba352", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14352", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mprgddqhze2f", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14352 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 AR for WooCommerce: \u0443\u0433\u0440\u043e\u0437\u0430 \u0434\u043b\u044f \u0441\u0430\u0439\u0442\u043e\u0432 \u043d\u0430 WordPress\n\n\n\nhttps://kripta.biz/posts/F9F261F0-3251-4788-BEFB-DC4B840E194F", "creation_timestamp": "2026-07-03T20:50:20.570061Z"}, {"uuid": "82eb2afc-2237-4749-8236-b3e9987b64a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14352", "type": "seen", "source": "https://bsky.app/profile/qiancx.bsky.social/post/3mprgdhk34a2n", "content": "WordPress\u63d2\u4ef6AR for WooCommerce\u5b58\u5728\u76ee\u5f55\u904d\u5386\u6f0f\u6d1e(CVE-2026-14352)\u6df1\u5ea6\u5206\u6790\u4e0e\u5e94\u5bf9\u7b56\u7565\n\n\n\nhttps://qian.cx/posts/5045C7A2-FE2A-44BA-A709-3FD332B3835F", "creation_timestamp": "2026-07-03T20:50:24.398717Z"}, {"uuid": "f7c21af3-d288-4792-b9a1-b2ebb3e7575e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14352", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mpubggvvgs2z", "content": "CVE-2026-14352. HIGH (7.5). AR for WooCommerce leaks wp-config.php, database backups, API keys. No auth needed. Anyone visiting your site can read arbitrary files.\n\nUpdate to 8.40 now.\n\nScan your WordPress site: pulse-wp.com\n#WordPress #LFI #CyberSecurity", "creation_timestamp": "2026-07-05T00:00:35.014712Z"}, {"uuid": "38ce1764-7f4b-4906-a683-5739b4e8ceb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14352", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mpwojyuzwi2g", "content": "\ud83d\udfe0 CVE-2026-14352 - High (7.5)\n\nThe AR for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-14352/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-05T23:00:33.019958Z"}]}