{"vulnerability": "cve-2026-4503", "sightings": [{"uuid": "7c7243ef-8ac4-42b9-8f9c-612300d82156", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4503", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqllcixu326", "content": "\ud83d\udfe0 CVE-2026-4503 - High (7.5)\n\nIBM Langflow Desktop 1.0.0 through 1.8.4 Langflow could allow an unauthenticated user to view oth...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-4503/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T21:45:38.853150Z"}, {"uuid": "924a16ec-359c-45a4-b01f-239555e3c569", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4503", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mkqoxati4x2t", "content": "CVE-2026-4503 - Unauthenticated Insecure Direct Object Reference (IDOR) Vulnerability in Langflow Desktop Image Download Endpoint\nCVE ID : CVE-2026-4503\n \n Published : April 30, 2026, 9:16 p.m. | 1\u00a0hour, 2\u00a0minutes ago\n \n Description : IBM Langflow Desktop 1.0.0 through 1.8.4 L...", "creation_timestamp": "2026-04-30T22:46:00.488059Z"}, {"uuid": "e05432e6-402a-4b19-9ec3-2288c6dc1e4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45033", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlrd7htx5x2n", "content": "CVE-2026-45033 - GitHub Copilot CLI: Nested Bare Repository Can Execute Arbitrary Commands via core.fsmonitor\nCVE ID : CVE-2026-45033\n \n Published : May 13, 2026, 4:17 p.m. | 4\u00a0hours, 8\u00a0minutes ago\n \n Description : GitHub Copilot CLI brings AI-powered coding assistance directl...", "creation_timestamp": "2026-05-13T22:13:43.044275Z"}, {"uuid": "5e32154a-dbbe-469d-99a6-96421b998f63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45035", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlx67zbdpu2m", "content": "CRITICAL: Tabby < 1.0.233 lets attackers run OS commands via tabby:// links \u2014 zero-click RCE! Upgrade to 1.0.233+ ASAP. Avoid untrusted links. https://radar.offseq.com/threat/cve-2026-45035-cwe-78-improper-neutralization-of-s-e1b4240b #OffSeq #SecurityAlert #Tabby", "creation_timestamp": "2026-05-16T06:02:35.142804Z"}, {"uuid": "c84dcb83-970c-4d2f-9fdf-161d004a0ffe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45039", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwsu52wag2z", "content": "\ud83d\udd34 CVE-2026-45039 - Critical (9.8)\n\nRustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, the internode...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45039/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-28T20:02:13.661516Z"}]}