{"vulnerability": "cve-2026-34038", "sightings": [{"uuid": "bbe8c964-41fa-4c10-9ac8-b23858451098", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34038", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpz22rxij323", "content": "CVE-2026-34038 - coolify\nCoolify, a server management tool, had a security flaw that allowed users with permission to manage applications to access the server remotely and steal sensitive information.\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#coolify #coollabsio #CVE #infosec", "creation_timestamp": "2026-07-06T21:32:06.220996Z"}, {"uuid": "155f6350-3e54-4891-8c3f-6312d2a818f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mq36shckli2n", "content": "CVSS 9.9. Authenticated remote command injection. Public exploit available.\n\nCVE-2026-34038.\n\nhttps://www.yazoul.net/news/article/attackers-exploit-simplehelp-cve-2026-48558-to-deploy-taskweaver-and-djinn-steal/\n\n#CyberSecurity #Security", "creation_timestamp": "2026-07-07T18:02:15.070624Z"}, {"uuid": "0be0150c-55da-491d-8302-5ee91567e889", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-34038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mq52efukpq2n", "content": "\u26a0\ufe0f CVSS 9.9. Authenticated remote command injection. That's not a typo.\n\nhttps://www.yazoul.net/advisory/cve/cve-2026-34038-coolify-rce-leaks-secrets-poc/\n\n#CVE #CyberSecurity", "creation_timestamp": "2026-07-08T11:48:08.951037Z"}, {"uuid": "adc0a31c-0d2b-4e95-bcb1-70c732236991", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mqrqmzaybj2j", "content": "Four critical CVEs. One breach. Two threat stories. All in one week.\n\nCVE-2026-23697, CVE-2026-23698, CVE-2026-34038, CVE-2026-56291.\nThat's four separate vendors with critical flaws in seven days.\n\nhttps://www.yazoul.net/news/article/2026-w28-weekly-threat-roundup/\n\n#CyberSecurity #Security", "creation_timestamp": "2026-07-16T17:19:54.644588Z"}, {"uuid": "1af82243-d1e3-4fd2-b032-0292008538c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34038", "type": "seen", "source": "Telegram/dpmbE18R2X3GFwkSOa6JWFFXWxZYAauVOJ1P4vKBnJxqD5U", "content": "", "creation_timestamp": "2026-07-16T19:00:22.755061Z"}, {"uuid": "f7753501-90f9-4c74-a808-f682a3a00a07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34038", "type": "seen", "source": "Telegram/WBfJhgYWFgGZweaYHdL4XCHbf830r-eLiiHG7thAwi1RwC8", "content": "", "creation_timestamp": "2026-07-16T19:00:22.863005Z"}, {"uuid": "eeb7bac7-7c58-4660-9e68-874fd079c0d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34038", "type": "seen", "source": "Telegram/dpmbE18R2X3GFwkSOa6JWFFXWxZYAauVOJ1P4vKBnJxqD5U", "content": "", "creation_timestamp": "2026-07-17T00:00:39.301304Z"}, {"uuid": "487f8a66-a32d-4ea6-80b2-8fcefc45bac8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34038", "type": "seen", "source": "Telegram/WBfJhgYWFgGZweaYHdL4XCHbf830r-eLiiHG7thAwi1RwC8", "content": "", "creation_timestamp": "2026-07-17T00:00:39.435451Z"}]}