{"vulnerability": "cve-2026-4818", "sightings": [{"uuid": "9866fd07-7a01-4c53-9633-834dba274b94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48188", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mn7byrnowf2z", "content": "CVE-2026-48188 - SQL Injection via MySQL Quote Method\nCVE ID : CVE-2026-48188\n \n Published : June 1, 2026, 3:33 a.m. | 52\u00a0minutes ago\n \n Description : An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition\u00a0database layer module allows an unauthenticat...", "creation_timestamp": "2026-06-01T04:54:32.608699Z"}, {"uuid": "a8a20dac-5721-4952-8eea-a94bf7f18d7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48188", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn7cctz75a2r", "content": "\ud83d\udd34 CVE-2026-48188 - Critical (9.1)\n\nAn improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition\u00a0database layer ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-48188/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-01T05:00:11.590055Z"}, {"uuid": "990659b9-7588-49de-94b2-1d89262efd10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48188", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mn7cl53ixl2w", "content": "CVE-2026-48188 - Critical SQL injection in OTRS. Unauthenticated attackers can bypass authentication via MySQL/MariaDB with NO_BACKSLASH_ESCAPES mode. CVSS 9.1. No patch available. Disable affected SQL mode immediately. #CVE #OTRS #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-48188/", "creation_timestamp": "2026-06-01T05:04:49.404097Z"}, {"uuid": "9ac0cf19-010e-4c3c-8f9f-4b0ef6912501", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48189", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mn7l4o2yyv2j", "content": "CVE-2026-48189 - Bypass DedicatedAgentToCustomerGroups Setting\nCVE ID : CVE-2026-48189\n \n Published : June 1, 2026, 4:16 a.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : An improper Input Validation vulnerability in OTRS Customer Backend module allows to access customer informat...", "creation_timestamp": "2026-06-01T07:37:46.499244Z"}, {"uuid": "da46a921-0738-4882-9892-243ae9422629", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48187", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mn7k24cjqt2e", "content": "CVE-2026-48187 - Email with special content can lead to DoS\nCVE ID : CVE-2026-48187\n \n Published : June 1, 2026, 4:16 a.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows exces...", "creation_timestamp": "2026-06-01T07:18:26.943400Z"}, {"uuid": "8e74f452-ec2e-4272-986e-83a0609e2807", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48188", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3mn7sg7nmxs2c", "content": "\ud83d\udea8 OTRS users should take note of CVE-2026-48188\n\nA critical unauthenticated SQL injection vulnerability may allow authentication bypass under specific MySQL/MariaDB configurations.\n\n\ud83c\udfab Affects multiple OTRS generations and Community Edition.\n\n\ud83d\udd17 basefortify.eu/cve_reports/...\n\n#OTRS #SQLInjection #CVE", "creation_timestamp": "2026-06-01T09:48:33.190625Z"}, {"uuid": "c152ec0e-f4fe-4651-8e1c-6bb0155c5092", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48188", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/86816", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-48188\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a Habuon\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-01 11:44:47\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nThis is POC repo for CVE-2026-48188\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-01T12:00:06.000000Z"}]}