{"vulnerability": "cve-2026-4059", "sightings": [{"uuid": "351a527a-012d-491f-aa41-5adf7a6c6731", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40591", "type": "seen", "source": "Telegram/HMXFp0Tl_wkMV3YbUFvnNEgjo9AC8CPiEoVa-pxPf99RdwY", "content": "", "creation_timestamp": "2026-04-21T19:25:57.000000Z"}, {"uuid": "60fc1d05-60fb-4aba-a67a-9e27563386bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40593", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mjqdnsg3fr2d", "content": "", "creation_timestamp": "2026-04-18T01:58:41.471525Z"}, {"uuid": "11468552-5457-40d4-ac33-17ea87c8d5a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40596", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmhxb7f6tf2c", "content": "CVE-2026-40596 - MantisBT is vulnerable to XSS and potential account takeover via user font family preference update\nCVE ID : CVE-2026-40596\n \n Published : May 22, 2026, 7:25 p.m. | 54\u00a0minutes ago\n \n Description : Mantis Bug Tracker (MantisBT) is an open source issue tracker. ...", "creation_timestamp": "2026-05-22T22:11:09.968808Z"}, {"uuid": "f865036c-6324-4dd8-9c9b-c372663135d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40595", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqevntsov2r", "content": "\ud83d\udfe0 CVE-2026-40595 - High (7.5)\n\nChartbrew is an open-source web application that can connect directly to databases and APIs and u...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-40595/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T19:46:10.857681Z"}, {"uuid": "3a1984a8-4100-403b-8324-c51e38849a1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40595", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mkqlwhmhop2f", "content": "Chartbrew 4.9.0\u3067\u3001\u8a8d\u8a3c\u306a\u3057\u3067\u516c\u958b\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u306e\u30c1\u30e3\u30fc\u30c8ID\u3092\u77e5\u308b\u653b\u6483\u8005\u304c\u3001\u975e\u516c\u958b\u30c1\u30e3\u30fc\u30c8\u306e\u30c7\u30fc\u30bf\u3092\u95b2\u89a7\u30fb\u30a8\u30af\u30b9\u30dd\u30fc\u30c8\u3067\u304d\u308b\u8106\u5f31\u6027\u30025.0.0\u3067\u4fee\u6b63\u3002\nCVE-2026-40595 CVSS 7.5 | HIGH", "creation_timestamp": "2026-04-30T21:51:53.280759Z"}, {"uuid": "e215f690-c0d8-4de5-a894-eb761b77340a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40599", "type": "seen", "source": "Telegram/raJRCian8jdwH_ZHMkV6wtcQApYY70x43uMZTCVVg-5BoqY", "content": "", "creation_timestamp": "2026-04-21T19:26:26.000000Z"}, {"uuid": "67ab88ae-5fbe-47ce-82f5-ce7f63d0e8e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40598", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmhxqruzhh2h", "content": "CVE-2026-40598 - MantisBT has Potential Referer-Based Reflected HTML Injection / XSS in Tag Update Page\nCVE ID : CVE-2026-40598\n \n Published : May 22, 2026, 7:32 p.m. | 47\u00a0minutes ago\n \n Description : Mantis Bug Tracker (MantisBT) is an open source issue tracker. In versions 2...", "creation_timestamp": "2026-05-22T22:19:52.836730Z"}, {"uuid": "c596719a-a056-406b-9bff-3d36b3f28ae5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40597", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmhxykfjqe2i", "content": "CVE-2026-40597 - MantisBT has a Content Security Policy bypass via attachments\nCVE ID : CVE-2026-40597\n \n Published : May 22, 2026, 7:29 p.m. | 50\u00a0minutes ago\n \n Description : Mantis Bug Tracker (MantisBT) is an open source issue tracker. In versions 2.28.1 and below, given an...", "creation_timestamp": "2026-05-22T22:24:23.017510Z"}, {"uuid": "987de983-2a4d-449a-946c-ec37d06fe34b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40597", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mnmiw2dm4a2l", "content": "CVE-2026-40597 Mantis Bug Tracker (MantisBT)\u306e\u8106\u5f31\u6027\u3092\u308f\u304b\u308a\u3084\u3059\u304f\u89e3\u8aac\uff5c\u5f71\u97ff\u7bc4\u56f2\u3068\u5bfe\u7b56\u307e\u3068\u3081\n\nCVE-2026-40597 Mantis Bug Tracker (MantisBT)\u306f\u30aa\u30fc\u30d7\u30f3\u30bd\u30fc\u30b9\u306e\u8ab2\u984c\u8ffd\u8de1\u30b7\u30b9\u30c6\u30e0\u3067\u3059\u3002", "creation_timestamp": "2026-06-06T11:02:53.705329Z"}, {"uuid": "01305558-7e20-4cea-8ddb-f917dc814c3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-40594", "type": "published-proof-of-concept", "source": "https://github.com/pyload/pyload/security/advisories/GHSA-mp82-fmj6-f22v", "content": "", "creation_timestamp": "2026-04-14T21:24:21.000000Z"}]}